GDPR

csvbox.io GDPR Readiness

GDPR Overview

Control over personal data is a fundamental right of every individual. With organizations across the world collecting customer data to enable them to provide services, it becomes important that companies manage data in a transparent manner with the customer's consent. GDPR, stands for "General Data Protection Regulation". It is one of the most important changes made to data privacy regulations in the last two decades. It establishes a new framework for handling and protecting the personal data of EU-based residents and is in effect since May 25, 2018. It provides the citizens of the EU greater control over their personal data and assures them that their information is protected.

Does GDPR affect you?

Although GDPR is a data protection framework for the citizens residing in the EU, it also applies to all companies that handle the personal data of individuals from the EU. This means that almost every major corporation in the world will need to be ready when GDPR comes into effect. If you or your organization stores and processes personal data in connection to services or goods offered in the EU, then the laws applies to you as well. Also, in the event of an infringement of these laws, you can face fines and penalties from 10 million to 20 million dollars or 2% to 4% of the annual revenue of the organization depending upon whichever is higher.

Our commitment to GDPR

We are fully committed to GDPR and hence have built product features for greater privacy and data control. As an organization, we has always implemented and practiced processes that ensure that customer data is stored and processed in ways necessary only to serve our customers in the best possible way. Our privacy, security, and data policies are also streamlined with the GDPR goals and objectives.

Steps taken by csvbox.io

  1. Appointed a DPO

  2. Made the required changes to its product features to ensure that GDPR guidelines are followed.

  3. Implemented changes to our internal processes and procedures required to ensure that GDPR guidelines and followed.

  4. Right to be forgotten -- csvbox.io lets you delete customer data permanently and once deleted data from this user will never be captured for that app. A delete request must be routed via the registered email address to validate the requester is genuine.

  5. No capturing of IP Address -- csvbox.io does not capture the IP address of your end-users. So it cannot track your user location. We don't track your users' location.

  6. Providing the customer with a copy of their data -- csvbox.io can help you retrieve copy of your users data on request. The request for a copy of the data has to come from the owner of your account.