General Data Protection Regulation (GDPR)
The European Union (EU) General Data Protection Regulation (GDPR) becomes effective on the 25th of May 2018. GDPR is a new set of data privacy and protection laws that apply globally. Every organization (regardless of location) that offers goods and services to EU individuals and that controls and/or processes EU individuals' personal data must comply with GDPR.
Commitment to data protection
Throughout our operations, our people are committed to protecting the privacy of the individuals and companies we serve. Promptxt prides itself on its best in class platform and infrastructure to provide secure and reliable mobile message services. We honour the users’ right to data privacy and protection. We do not collect or process users’ personal information beyond what is required for the functioning of our services. We are committed to GDPR compliance.
Alignment to GDPR principles
By the nature of our business, Promptxt processes large amounts of data for our customers. In that capacity, under GDPR, Promptxt acts as a Data Processor. We process third party data in accordance with the instruction of our customers, who are the Data Controllers. We understand our obligations as a Data Processor, and what they will be when GDPR becomes effective. Amongst other things, we have been, are and will continuously be:
Addressing the EU Individual Rights listed in the GDPR:
- The right to be informed
- The right of access
- The right to rectification
- The right to erasure
- The right to restrict processing
- The right to data portability
- The right to object
- Rights in relation to automated decision making and profiling.
Ensuring personal data is processed:
- Purposefully and with legitimate interests, and
- Stored no longer than necessary.