I’m sure you’ve heard about GDPR, a European privacy law (GDPR) will go into effect on May 25, 2018.
Over the last 6 weeks we’ve been working hard on this end to put the proper measures in place to ensure our software platform is in compliance, so you have a secure and safe place for you and your clients.
WHY GDPR AND WHAT DOES IT MEAN TO YOU?
The European Union has taken a stance on protection of personal data and privacy. This measure was created in an attempt to protect the privacy of all citizens within the European Union. The regulation affects websites, and the way personal personal data is processed for EU citizens.
WHY SHOULD YOU CARE
It’s boils down to communication and the level of transparency with you and your clients. You must clearly communicate how you are:
You’ll also need to comply with any request from any subscriber in a request to receive a copy of data that you’ve processed via our software.
Located within our terms it is your responsibility to ensure that any campaign built within contactreach must abide by your local laws. Any information provided is not legal advice, and you should not rely upon it as legal advice. It is your responsibility to take action to make sure you are compliant.
YOUR NEXT STEPS
As a CONTACTREACH user, you’re most likely a business owner that provides services to businesses. In respective order, contactreach is a data processor, and will comply with its obligations under the GDPR; In respect to your customers/clients, You are most likely a data controller. If any of your customers is a citizen or a resident of a country in the European Union, then You must ensure that You comply with the obligations as a data controller under the GDPR.
Your Rights Under the GDPR. If You are a citizen or a resident of a country in the European Union, the GDPR grants You the following rights:
a. Access to Your Personal Data. You have the right to receive a copy of Your personal data that is subject to processing by Contactreach. You can access your data per campaign at any time by texting: MYDATA into the respective campaign you request data for. As for your data as an admin, you can access and edit this data at anytime from within the software platform.
b. To have Your Data Corrected. If Your personal data is erroneous or outdated, You have the right to have it corrected.
c. To be Forgotten. You have the right to be forgotten by contactreach. You may exercise the right to access your data per campaign at any time by texting: MYDATA into the respective campaign to delete your data.
d. To Restrict Processing of Your Data. You can request that Your data not be processed. You may exercise the right to Restrict processing your data per campaign at any time texting STOP within the respective campaign the user is subscribed to.
e. Portability. You have the right to receive a copy of Your personal data that is subject to processing by Contactreach in a portable format. You can access your data per campaign at any time by texting: MYDATA into the respective campaign you request data for. As for your data as an admin, you can access and edit this data at anytime from within the software platform.
ACTION STEPS WE TOOK FOR COMPLIANCE:
1 - A process to deliver all personal information we have about a customer on request
2 - A process to remove all personal information we have about a customer on request
3 - Getting the consent of customers for the "processing" (not strictly defined) of any personal data
4 - Anonymizing (read: encrypting) personal data at rest
5 - A process to notify affected customers of a data breach within 24 hours
Inform customers of everything we are doing with their data
6 - Document everything we have done to comply with GDPR so that we can prove it down the road
We took these measures to ensure you continue to deliver
the best experience for your clients, so you have peace of mind.
As these rules change and evolve (as they will), we'll always respond