GDPR

We follow applicable regulations to protect your integrity

The General Data Protection Regulation (GDPR) is EU’s data protection regulation, which came into force on May 25, 2018. The purpose of the act is to strengthen the individual's integrity in the processing of personal data. The act affects all companies, organizations and industries handling personal data and will, among other things, require new routines to guarantee safe data management. Negligence can cause serious penalties and lead to extensive fines.

For instance, if you have a customer register or personnel records including information about e.g. names, social security number, email addresses, etc., the registered person has the right to remove the information provided. Organizations which process data involving mapping of personal behaviour, must appoint a Data Protection Officer whose task is to monitor questions regarding data protection.

We at &frankly welcome the Data Protection Regulation as it strengthens the rights of each citizen. We were well prepared and already managed our customers’ personal data according to the same principles as GDPR before it came into force.

  • We ensure that the gathering and management of our customers’ personal data complies with our clients’ instructions and consequently the required legislation.
  • In our Terms and Privacy Policy, we guarantee the integrity of each and every user as well as the right to their own data. We guarantee their right to extract desired data, correct and/or delete it.
  • We have a well thought out security process, with a clear information and security policy. We have designed our service with privacy issues in mind (i.e. “Privacy by Design”).
  • We always guarantee that data transfer and storage is encrypted and that data is securely stored in our data centre within the EU. We keep our servers safe with, among other things, firewalls and strict access control with traceability and assurance of high accessibility.