GDPR Compliance
We are compliant with the EU’s General Data Protection Regulations (GDPR), and updated our privacy policy to be compliant with. Although these changes were spurred by European law, we think privacy is super important and so those changes apply to everyone, no matter where you’re located.
What’s GDPR?
The GDPR is a comprehensive data protection law that came into effect on May 25, 2018. It replaced existing EU law to strengthen the protection of “personal data” and the rights of the individual. It’s a single set of rules which governs the processing and monitoring of EU data.
Does it affect me?
Yes, most likely. If you hold or process the data of an any person in the EU, the GDPR will apply to you, whether you’re based in the EU or not.
How AnnounceKit prepared for GDPR
Our teams worked hard to ensure we complied with GDPR. This was a massive overhaul of processes and data models to make sure we met our legal obligations, and did the best thing for our customers while still letting us move fast, scale and build great products.
Here are the main things we did:
We built new features
Our teams built new features to enable our customers to easily meet their GDPR obligations.
AnnounceKit helps you meet your data portability requirements; you can easily export all of your data linked to an individual and permanently delete all data linked to an individual user. This is available for customers upon request.
We updated our Data Processing Agreements (DPAs):
Strong data protection commitments are a key part of GDPR’s requirements. Our updated data processing agreement shares our privacy commitments and sets out the terms for AnnounceKit and our customers to meet GDPR requirements. This is available for customers to sign upon request.
We use SCC as a data transfer mechanism
If you are a resident in the European Economic Area, we may transfer your Personal Information to affiliated entities, we make use of the European Commission-approved standard contractual data protection clauses, binding corporate rules, or other appropriate legal mechanisms to safeguard the transfer
We appointed a Data Protection Officer
We’ve a dedicated Data Protection Officer to oversee and advise on our data management. Get in touch through the messenger or by emailing support@announcekit.app.
We coordinated with our vendors
We’ve reviewed all our vendors, finding out about their GDPR position and signed Data Processing Agreements with them.
| Vendor Name |
Purpose |
| Google LLC |
Data storage |
| Amazon Web Services Inc. |
Data Storage |
| Mailgun Technologies Inc |
Emailing |
| Hotjar Ltd |
Analytics |
| Stripe Inc |
Payment |
| Typeform SL |
Surveys |
| Intercom Inc |
Customer Service |
| Segmentio Inc |
Data Control |
We took new security measures
Security is a priority for us. We have regular external audits, pentests and bug bounties. We’ve built a robust security framework, achieving International Compliance standards and reviewed our internal access design to ensure the right people have access to the right level of customer data.
Questions?
Feel free to reach out if you have any questions about GDPR.
