General Data Protection Regulation
We’re committed to helping our customers prepare for the General Data Protection Regulation (GDPR). The GDPR is a series of rules governing organizations that handle EU citizens’ personal data, regardless of where the organizations themselves are located. On this page, we’ll explain our methods and plans to achieve GDPR compliance, both for ourselves and for our customers.
GDPR will go into effect on May 25, 2018.
Our team is working to bring My Business Manager’s (“MBM’s”) offerings and contractual commitments in line so customers can prepare themselves before May 25, 2018. Measures to achieve this include:
- Updates to the product to include tools for data management, portability and access
- Making sure we have appropriate contractual terms in place
- Committing to our Privacy Shield equivalent, and by implementing our Data Processing Addendum
We’ll also continue to monitor the guidance around GDPR compliance from privacy-related regulatory bodies, and will adjust our plans accordingly should the situation change.
Our security infrastructure
Protecting our customers’ information and their users’ privacy is extremely important to us. As a cloud-based company entrusted with some of our customers’ most valuable data, we’ve set high standards for security.
In accordance with GDPR requirements around security incident notifications, MBM will continue to meet its obligations and offer contractual assurances.
International data transfers (Privacy Shield)
As an Australian based company, we are not able to self-certify under the EU-U.S Privacy Shield framework, but in order to comply with E.U. data protection laws surrounding international data transfer, we have committed to the principles of the agreement. More information is available here.