Prepping for GDPR

 

What is GDPR?

GDPR stands for General Data Protection Regulation (GDPR) and it takes effect in the European Union (EU) on the 25th of May 2018. The GDPR expands the privacy rights of EU individuals by placing new obligations that all organizations serving them must follow. This includes organizations that market, track, or handle EU personal data. Email It is committed to helping our customers comply with this new GDPR regulations through our most robust privacy and security protection policies that we have in place.

How is Email It preparing for GDPR?

At Email It, we value your trust. It is very important to us. We understand that you trust us with the email data that you upload to our servers for sending out email campaigns. We welcome the new GDPR regulations and we truly believe this is an important step in streamlining data protection across EU. It only deepens our commitment to protecting your data.

We are doing all we can to comply with the GDPR in the delivery of our services to our customers. Our team has closely analyzed the requirements of the GDPR and we are enhancing our product features, contracts, and documentation to help support our customers get compliant with GDPR clauses, EU-US agreements, and Swiss-US Privacy Shield.

Appointment of Data Protection Officer

We’re pleased to appoint Stephen Kiran as our new Data Protection Officer. Stephen is already working hard on helping us to comply with new EU regulations.

Our Work on GDPR

Global Privacy Law Compliance: Email It currently complies with global privacy laws through the implementation of Model Contract Clauses.

Privacy Impact Assessments: We are working to embed data protection principles even more deeply into our business processes using PIAs, with the objective of limiting the amount and use of data from our servers to what is minimally required.

Privacy Mission Statement and Operations: We have internal data handling policies in place as well as a Privacy Operations Manual, and a mission statement in order to express our commitment to compliance. They include our objectives, key performance indicators (KPIs) and obligations to the organization, our clients, and our service partners.

Privacy Council: We created a group of internal stakeholders from across the organization in order to help us educate teams on privacy rules, confirm implementation of required practices, and ensure that we have a top down/bottom up buy-in for our privacy program.

Organizational Guidelines and Compliance: We are working closely with our legal department, marketing, and human resources to ensure that guidelines are being closely followed and that we have the necessary pieces in place to achieve and maintain compliance.