How iZooto is preparing for the GDPR

What is GDPR?

The GDPR (General Data Protection Regulation) is a new EU Regulation which will replace the 1995 EU Data Protection Directive (DPD) to significantly enhance the protection of the personal data of EU citizens and increase the obligations on organizations who collect or process personal data. GDPR will come into effect on 25th May 2018 and will be applicable to all member states. You can read about the full text of the GDPR here.

Does the GDPR apply to me?

While the current EU legislation (the 1995 EU Data Protection Directive) governs entities within the EU, the territorial scope of the GDPR is far wider in that it will also apply to non-EU businesses who a) market their products to people in the EU or who b) monitor the behavior of people in the EU. In other words, even if you’re based outside of the EU but you control or process the data of EU citizens, the GDPR will apply to you.

How is Datability preparing for the GDPR?

As part of our unwavering commitment to data security and customer protection, Datability is committed to GDPR compliance. We are evaluating new requirements and restrictions imposed by the GDPR and will take any action necessary to ensure that we handle customer data in compliance with applicable law by the 2018 deadline, while continuing to move fast and build great products.
What are we doing to comply with GDPR?

We’re building new features

Our team is building features needed to ensure we, and our customers, meet the GDPR obligations. This includes the following :
- Easy to use interface for users to access their data and delete it
- New Subscription templates for customers to communicate effectively with users

We’re updating our Data Processing Agreements (DPAs)

We are committed towards data protection rights of our customers and are updating our existing data processing agreement to ensure that our commitments to safeguard privacy of our customers and their data meet GDPR requirements.

We’re collaborating with vendors

We’re collaborating with our vendors, understanding and reviewing their GDPR plans to ensure similar GDPR-ready data processing agreements with them.

We’re taking new security measures

We have a dedicated inhouse Security team which regularly conducts vulnerability scans and penetration tests.
We will be updating this space with details of our progress and also help our customers be compliant. Here are some additional resources -

Questions?

Should you have any queries, feel free to reach out - we will be happy to talk.