Over the last months, we’ve been hard at work preparing for the General Data Protection Regulation, most commonly known as the GDPR. GDPR will be officially enforced on May 25th, 2018. We are excited to announce that Surveypal complies with its legal provisions.
Why are we sharing this information with you?
The GDPR will replace the existing European Union (EU) Data Protection law and introduces a set of rules that govern the processing and monitoring of EU citizens’ personal data. Under GDPR mandate, Surveypal, as a software provider that engages with EU users, functions as
- a controller of Surveypal customers’ personal data
- a processor of personal data collected by Surveypal customers through the use of our software
In our role as a data controller and as a data processor we are committed to safeguarding the individuals’ right to data privacy and our team has taken the necessary steps to define our GDPR roadmap and ensure we are meeting our legal obligations.
How do we ensure GDPR compliance?
Here is a list of what we’ve done to make sure we and our customers meet GDPR obligations:
Documentation
Documentation is an integral part of GDPR compliance. We have produced appropriate documentation to guarantee that our processes, systems, and data flows are transparent and aligned with GDPR.
Privacy Policy
We updated our privacy policy to reflect our data protection principles in a transparent, intelligible, and easily accessible manner. Follow this link to access our privacy policy and read how and why we capture personal data and to what ends we use it.
Data Processing Agreements (DPAs)
We have updated our data processing agreement to share our commitment to data privacy and map out the terms between Surveypal and our customers to achieve GDPR compliance.
New features
We have developed new features that allow our customers to search for and delete all personal data linked to specific individuals who respond to surveys. Click here for more information.
Subprocessor coordination
We set in motion a process to review our data subprocessors and coordinate with them in all GDPR-related matters. This allowed us to ensure that all our subprocessors are GDPR compliant as well. To guarantee vendor compliance we have signed GDPR data processing agreements with them.
Marketing consents
We request consent from the data subjects in our marketing database and we have updated our marketing-related processes to reflect our commitment to comply with GDPR mandates.
Did you like the post?
You might also like:
Surveypal
Everything you need to lead and improve your customer experience. Learn more at surveypal.com, or