Starting from May 25, 2018, The European Union enforces a new data privacy law called the General Data Protection Regulation (GDPR) replacing the previous Data Protection Directive. A primary aim of the GDPR is to provide people in the EU greater control over their personal data and data which is collected about them.
Any company that collects (or processes on behalf of the company that collects) personal data of persons in the EU falls under the scope of the GDPR. Even if the company has no physical presence in the European Union. This means that most businesses with a global or online presence, including EasyDMARC’s customers, are affected.
How does EasyDMARC comply with GDPR regulations?
At EasyDMARC, data privacy and security are at our core. Our state-of-the-art real-time infrastructure, advanced security and data protection, independent certifications and global regulatory compliance have earned the trust of the world’s leading brands.
EasyDMARC is committed to and investing significant and strategic resources — implementing rigorous technical measures and working with leading third-party consultants — to provide diligent GDPR compliance across our solutions and teams.
Data Security and Privacy Compliance
We are committed to stringent data confidentiality, privacy and security.
Data Subject Request Management
To help advertisers (controllers) to adhere to the GDPR obligations towards their end-users requests, EasyDMARC has built new API’s to manage users’ (data subjects’) requests for:
- The right to erasure (a.k.a. the right to be forgotten)
- Also, the right to access
- The right to data portability
- And the right to rectification
Data Protection by Design
EasyDMARC has implemented appropriate technical and organizational measures for ensuring that, by default, only personal data that is necessary for each specific purpose of the service are processed, strictly in accordance with our customers’ instructions and configuration.
- Personal Data is collected only when we obtain assurances of user consent
- Anonymized and encrypted personal data options
- No selling or re-brokering of personal data
- Honoring do-not-track privacy choices