At Ecommerce Eye we strive to comply with EU General Data Protection Regulation (GDPR), to ensure that we fulfill its obligations and maintain transparency about customer messaging and how we use data.
The GDPR is a comprehensive data protection law that came into effect on May 25, 2018. It replaced existing EU law to strengthen the protection of “personal data” and the rights of the individual. It’s a single set of rules which governs the processing and monitoring of EU data.
Does it affect me?
Yes, most likely. If you hold or process the data of any person in the EU, the GDPR will apply to you, whether you’re based in the EU or not.
Complying with GDPR?
This is an ongoing effort to make sure we’re meeting our legal obligations, and doing the best thing for our customers while still letting us deliver very useful information, services and products.
You can request an export of all of your data or granular subsets linked to an individual, and permanently delete all data linked to an individual user or request all data be deleted from your account.
Data Processing Agreement
Strong data protection commitments are a key part of GDPR’s requirements. Our updated data processing agreement shares our privacy commitments and sets out the terms for us and our customers to meet GDPR requirements.
International Data Transfers
To comply with EU data protection laws around international data transfer, we have included Standard Contractual Clauses (SCC) in our data processing agreement.
We review our vendors to ensure that they are also GDPR-compliant.