GDPR Commitment & Roadmap
Last updated March 15th 2022
The GDPR (General Data Protection Regulation) is a piece of legislation that is designed to strengthen and unify data protection laws for all individuals within the European Union. The regulation became effective and enforceable on May 25, 2018.
Subamplify is fully committed to achieving and upholding ongoing compliance with GDPR.
What we’re doing about the GDPR
The GDPR is a complex piece of legislation and we’ve been working with privacy experts, our third parties, other entrepreneurs, and attorneys to be sure we’re compliant with the GDPR.
The privacy and security of our customers (and their customers) are of utmost importance to us.
Here’s a high-level overview of the Subamplify GDPR Compliance Roadmap:
- Appoint a Data Protection Officer – COMPLETED
- Thoroughly research the areas of our product and business impacted by GDPR – COMPLETED
- Re-attain consent from existing marketing lists - COMPLETED
- Update our Policies and legal documentation – COMPLETED
- Rewrite our Data Protection Agreement – COMPLETED
- Develop a strategy and guidelines for how to address the areas of our product impacted by GDPR – COMPLETED
- Educate employees on GDPR practices - IN PROGRESS
- Perform the necessary changes/improvements to our product based on the requirements – COMPLETED + More improvments on roadmap to make life even easier and to improve control
- Provide contact forms for data requests – COMPLETED
- Implement the required changes to our internal processes and procedures required to achieve and maintain compliance with GDPR – COMPLETED
- Thoroughly test all of the changes to verify & validate compliance with GDPR – COMPLETED
- Communicate our compliance – COMPLETED
Changes to Subamplify to become GDPR compliant
There are a lot of changes are being made in Subamplify and across the company to make sure we’re GDPR compliant.
We’re working on providing tools to merchants to help them become GDPR compliant. Subamplify retains ownership of data along with it’s merchants using the software for anonymised analysis for product decisions and insights.
We’re making sure all data we collect is purely based on functional requirement. In other words, we only collect what we need to fulfil our intended purpose. We’re also making it possible to delete and export a customer’s data.
We’re reducing the types of data shared across vendors to only the essentials.