What is GDPR (General Data Protection Regulation)?
The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation aimed at enhancing and harmonising data protection for individuals within the European Union (EU). It establishes uniform data protection standards across Europe and is applicable to both EU-based companies and global entities that handle personal data of EU residents. The GDPR was implemented on May 25, 2018, by the European Parliament, the Council of the European Union, and the European Commission.
How does GDPR affect you?
If you handle personal data of individuals in the EU, the GDPR will be applicable to you, irrespective of your location. The GDPR aims to enhance and unify data privacy regulations for users across EU countries. It imposes new obligations on all organisations that manage personal data of EU citizens, regardless of where these organisations are situated.
You can read the full General Data Protection Regulation here: https://gdpr-info.eu/.
GDPR's concept of 'Personal Data' is explained in this article: https://www.gdpreu.org/the-regulation/key-concepts/personal-data/.
How is our platform compliant with GDPR?
Our Provider prioritises the security of your data. Safeguarding our customers' information and ensuring user privacy is a top priority. Our Provider is committed to supporting our users in maintaining GDPR compliance.
Here are the steps our Provider has implemented to ensure that the platform and all our users comply with GDPR regulations:
Policies updates
Our Provider has revised their Privacy Policy, Terms of Service, and Cookie Policy to comply with GDPR regulations and to maintain transparency regarding the use of your data and the data collected from your users. Any future changes to their policies will be communicated to you promptly.
Tools and features to help you comply with GDPR
As a data processor, our Provider has introduced new features and tools to assist you in fulfilling data requests from your users in compliance with regulations.
- Ability for agent to delete contacts
- Export tickets and chats by agents for visitor
- Property settings for disabling IP recording of visitor IP
- Data privacy consent form from visitor widget
Tools and features to help our Provider comply with GDPR
- Automated agent account deletion
- Data export tool
Data Processing Agreement with Sub-processors
Our Provider has entered into Data Processing Agreements (DPA) with their vendors to ensure your data and the data of your users is protected – here is a list of sub-processors.
Our Provider relies on the following sub-processors to support and provision their services:
| Third party service / vendor | Purpose | Entity country | Website |
|---|---|---|---|
| Meta | Social platform, messaging | USA | www.meta.com |
| Twilio | Communications technology provider | USA | www.twilio.com |
| Google Inc. | Google Cloud Platform | USA | cloud.google.com |
| Apple Inc. | App Store distribution | USA | developer.apple.com |
Data security
Security is a top priority for our platform provider, and they are dedicated to ensuring compliance with GDPR regulations by regularly assessing and enhancing their security protocols.
Questions about GDPR?
If you have any questions about GDPR, please contact us at:
ConverseIQ
info@converseiq.com.au
Thank you for choosing ConverseIQ for your conversational AI needs.