Loading...

General Data Protection Regulation(GDPR) compliance

GDPR(General Data Protection Regulation) aims to strengthen data privacy and data protection for European Union(EU) citizens and must be followed by all companies that have customers from the EU. GDPR will come into effect in May 25th, 2018 and if you have EU customers, you will need to become compliant.

Is Kompassify GDPR compliant?

Yes. Kompassify achieved compliance with GDPR prior to May 25th, 2021.

Does it affect me?

Yes, most likely. If you hold or process the data of an any person in the EU, the GDPR will apply to you, whether you’re based in the EU or not.

How Kompassify prepared for GDPR

Our teams worked hard to ensure we complied with GDPR. This was a massive overhaul of processes and data models to make sure we met our legal obligations, and did the best thing for our customers while still letting us move fast, scale and build great products.

Personal information we hold

There are two type of entities using Kompassify products:

* For all two parties we do store the IP address for fraud analysis and data security to:

Stored data location

All Kompassify's data is held on servers hosted in Germany.

Data security and data breaches

We take data protection and security very seriously at Kompassify. We constantly monitor for security flaws and unauthorized access and we will take action immediately if something suspicious is been detected. In an unlikely case of a data breach, we willl notify all of our customers within 72 hours after the breach was detected.

Some of the preventive measures we take include:

Data subject rights

Kompassify customers rights regarding to GDPR are considered and enforced, including:

Subject access requests

Kompasify replies to all access requests (positively or negatively) under 1 week (the legal limit from GDPR is 1 month). We offer this free of charge for our customers (paid and free).

Consent

Consent is provided by our users explicitly when proceeding an action or task (eg. when they provide user data). Kompassify allows its customers to submit user data in an automated way, via a frontend JavaScript API and backend REST API,

GDPR-ready Privacy and Cookie Policy

We updated our privacy policy and cookies policy to be GDPR compliant. We also added cookie consent banner to our website to make sure we store cookies only after consent is given.