The General Data Protection Regulation (GDPR) is a data privacy regulation that will come into effect on May 25, 2018.
GDPR covers the protection of Personal Identifiable Information (PII) of citizens of the European Union (“EU”) that is processed, stored, and managed by organizations and/or exported outside of EU.
Keeping customer data private and safe is of paramount importance for Easy Projects, regardless of nationality. We’re currently assessing our processes and systems, along with reviewing current product features in order to ensure compliance. Easy Projects will comply with all applicable requirements of the GDPR by the May 25, 2018 deadline.
In regards to GDPR classification, the Easy Projects platform is considered to be “Processor”. Customers of the Easy Projects application are classified as “Controller”.
What we’re doing
We are reviewing all vendors who act as sub-processors for Easy Projects data to ensure GDPR-compliance by May 25, 2018, including but not limited to reviewing data collection, data disposal and general business practises..
We are reviewing and updating our policies and business practises to ensure compliance.
Work with other leading technology firms to implement best practices.
Q: Data Storage – Where do you host data?
A: Easy Projects uses Microsoft Azure for hosting our application, and service is delivered from data centers located in the United States, Europe and Canada. Microsoft Azure offers the most comprehensive set of certifications and attestations of any cloud service provider, including:
By May 25th 2018 all accounts for our European clients will be moved the datacenter within the EU. You can read more about our data center for additional details.
Q: What Personally Identifiable Information (PII) currently stored within Easy Projects?
A: Easy Projects requires the name and email address of an individual to create a user profile associated with the overall Customer Account. Users and/or Customers may provide additional PII to their profile at their discretion. Easy Projects has no direct visibility to any other PII data store in the platform by the Individual User and/or Customer.
Q: Can PII be removed from Easy Projects?
A: As a Processor: Yes, we have policies in place to verify with the Controller of the data PII removal request and either remove or anonymize the data within regulated timeframe.
As a Controller: As a business, Easy Projects collects PII data from our Prospects and Customers (acting as Controller). Internally, we have process, policies and procurements related to the access, storage and removal of PII data within our systems. Questions related to our Data Protection and Privacy policies, including requesting removal, can be directed to email@example.com
Q: Where can I learn more about GDPR?
A: You can find more information on the GDPR website http://www.eugdpr.org/eugdpr.org.html
We will keep you updated as we continue to fulfill our privacy and security commitments. We will use this page to communicate how we are progressing with our GDPR-related efforts as soon as new information becomes available. If you have any questions about how Easy Projects will comply with the GDPR, please reach out to us: firstname.lastname@example.org