Control over personal data is a fundamental right of every individual. With organizations across the world collecting customer data to enable them to provide services, it becomes important that companies manage data in a transparent manner with the customer's consent.
GDPR, stands for "General Data Protection Regulation". It is one of the most important changes made to data privacy regulations in the last two decades. It establishes a new framework for handling and protecting the personal data of EU-based residents and is in effect since May 25, 2018. It provides the citizens of the EU greater control over their personal data and assures them that their information is protected.
Does GDPR affect you?
Although GDPR is a data protection framework for the citizens residing in the EU, it also applies to all companies that handle personal data of individuals from the EU. This means that almost every major corporation in the world will need to be ready when GDPR comes into effect. If you or your organization stores and processes personal data in connection to services or goods offered in EU, then the laws applies to you as well. Also, in the the event of infringement of these laws, you can face fines and penalties from 10 million to 20 million dollars or 2% to 4% of the annual revenue of the organization depending upon whichever is higher.
Our commitment to GDPR
We are fully GDPR compliant. Our privacy, security and data storage policies are also streamlined with the GDPR goals and objectives. Know more about the privacy policies check here.
Stackk being a custodian of customers' data, a multi-fold model of security architecture, robust product delivery and highly resiliant service platform, are the key tenets of it's service delivery. Know more about the security check here.
Stackk is committed towards upholding the underlying principles of GDPR.
Customer's Personal Data with Stackk
Know more about the Data Processing Addendum here.
Individual Rights, Subject Access, and Communication
The GDPR program thoroughly evaluates how Stackk, both as a data controller and processor, is placed with its existing procedures for readiness to
- Provide rights of individuals under GDPR
- Assist customers in responding to data access requests from individuals.
Right to be Forgotten
Stackk lets you delete customer/agent data permanently. A delete or an export request from a customer would have to be routed via the admin who validates if the requestor is genuine.
Right to Rectification
The GDPR includes a right for individuals to have inaccurate personal data rectified or completed if it is incomplete. A request from a customer would have to be routed via the admin who validates if the requestor is genuine.
Note: We will be updating the above section continuously with our latest road map and progress. Please read more at Mautic
Do I need to move my data to an EU data centre?
- GDPR does not require EU personal data to stay in the EU, nor does it place any new restrictions on the transfer of personal data outside the EU. GDPR only mandates that such transfers be legitimized through any of the mechanisms provided in the regulation.
- Stackk supports both EU-US Privacy Shield Certification and Model Contractual Clauses for data transfer provided in the regulation.
We, at Stackk, are committed towards providing a product which enables our customers to provide customer service responsibly by implementing and adhering to prescribed compliance policies, both as a data controller and processor. The upcoming GDPR enforcement is critical to our mission of providing EU and all our global customers with safe and dependable customer support software
Disclaimer: This is for informational purposes only and should not be relied upon as legal advice or to determine how GDPR might apply to you and/or your organization. We encourage you to obtain independent professional advice, before taking or refraining from any action on the basis of the information provided here.