- In:
- General
What 1tap is doing for GDPR
| Area | How we will comply |
| ✔ Privacy Policy | We have amended our Privacy Policy and Terms and Conditions to reflect GDPR requirements, such as the inclusion of new sections in relation to our legal basis for processing data and data subject rights. |
| ✔ Training and policies | We have implemented a new Data Protection Policy internally and have also rolled out a GDPR training programme across our group companies. |
| ✔ Processing Activities and Accountability | We have been working to compile comprehensive documentation about the data that we collect and process, out lawful bases for processing and any potential recipients of that data. |
| ✔ Data Protection Impact Assessments | We have established a process to ensure that Data Protection Impact Assessments will be undertaken where appropriate in order to identify and mitigate privacy risks. |
| ✔ Data Subject Rights | We are introducing new processes to enable us to respond to requests by data subjects to exercise their rights under GDPR, such as requests to access, rectify, erase or port their data. |
| ✔ Security | We have implemented appropriate technical and organisational measures to safeguard the security and integrity of your data. All data is stored with a trusted and accredited third party and is only accessible through encrypted channels. We are working towards ISO 27001 and are implementing new information security policies internally. |
| ✔ Marketing | We are ensuring that we adhere to GDPR requirements as to how we capture and record marketing consents. |
| ✔ Service Providers | We have reviewed our contracts with third-party providers that process data on our behalf and are putting in place GDPR-compliant Data Processing Agreements where necessary. |
| ✔ Data Exports | We will ensure that any transfers or personal data to countries outside the European Economic Area are only made on the basis of the EU Model Clauses, or where other adequate safeguards are in place. |
| ✔ Breach Notification | We have introduced a new breach notification procedure to ensure that we take appropriate steps, including notifying you and/or appropriate regulatory bodies, should a data breach occur. |
So, as you can see, we’ve worked hard to make sure that you’re not only covered, but that everyone understands the new regulations and that you’re fully protected.
If you have any questions about anything regarding GDPR or your data that you can’t find in our Privacy Policy and Terms and Conditions, feel free to contact us at hello@1tap.io.