At Teamgo we're committed to supporting our customers to prepare for the EU General Data Protection Regulation (GDPR). We're following its developing guidelines closely and are adapting accordingly.
As of May 1st 2018, Teamgo Pty Limited has implemented key features and processes to become fully GDPR compliant for our EU customers. We have also made these implementations available to customers globally so they can benefit from our commitment to data management of individuals information.
On May 25th 2018 the European Union's (EU) data protection framework, the General Data Protection Regulation (GDPR), will come into effect. It is a significant piece of data protection legislation and will impact all organisations that processes personal data in connection with goods and services offered to an EU resident, or monitors the behaviour of persons within the EU.
The GDPR supports individual's privacy rights through strengthening limits on processing of their personal data, significantly expanding their rights over their data and providing increased transparency into the nature, purpose, and use of it.
The EU GDPR will set a standard for how companies use and protect EU citizen's data and this will be effective from May 2018 with Teamgo. At Teamgo, we’ve been working hard to prepare for GDPR, to ensure that we deliver its obligations and maintain transparency about how we use your data.
The EU General Data Protection Regulation (“GDPR”) is a new, extensive data protection law that will come into effect on May 25, 2018. This will replace the existing EU Data Protection law to strengthen the protection of “personal data” and the rights of the individual. This will be a set of rules which govern the processing and monitoring of EU data.
Does it affect me?
Yes, if you hold or process the data of an any person in the EU, the GDPR will apply to whether you are based in the EU or not.
How is Teamgo addressing the GDPR?
We have been working to define our own GDPR roadmap and approach to the implementation of this key requirement. A complete overhaul of our internal procedures, processors and data models is being prepared to make sure we’re meeting legal obligations for our customers while still allowing us to scale, build, deliver and support great products.
Our platform team is building the features that will enable Teamgo customers to easily and fully delete or anonymise all data linked to an individual user. These will be available to all customers from May 2018.
Teamgo can assist with meeting your data portability requirements for GDPR, you will be able to easily export all of your data or detailed information linked to an individual person.
You will also be able to delete this data from your Teamgo account and the Teamgo system.
Updating our Terms, Privacy and Data Processing Agreements (DPAs):
Clear data protection commitments are a key to GDPR requirements. Teamgo's updated data processing agreement shares our privacy commitments and sets out the terms for Teamgo and our customers to meet GDPR requirements. This is available for customers to sign upon request. Enterprise customers are welcome to present their own DPA's for consideration and co-signing.
Certified for International Data Transfers:
The EU-US Privacy Shield is a framework agreed to by the European Commission and U.S. Department of Commerce as a lawful way of transferring personal data. To comply with the EU data protection laws around international data transfer, we are self-certified under the E.U.-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield framework.
Co-ordinating with our vendors
We’re working all of our existing and new vendors regarding their own GDPR plans and arranging similar GDPR-ready data processing agreements with them.
New security measures
We have regular external audits, penetration testing (pentests) and bug bounty programs. Teamgo has robust frameworks in place focusing on security first and processes for reviewing our internal access design to ensure the right people have access to the right level of customer data.
We will continue to keep sharing our policies, and we’ll also help our customers and prospective customers be compliant. Here are some steps you can take:
- Be familiar with the GDPR requirements and how they affect your company.
- Map out everywhere you process data and carry out a analysis in areas you feel there may be gaps.
- Consider how you can leverage Teamgo to help with your GDPR compliance of visitors to your locations. Our audit reports, pentests and security docs are available to customers on request (allow 7 working days to process).
- Look at your own product roadmap, think about privacy when you’re planning.
- Discuss to your legal consultant about what your company needs to do to regarding GDPR compliance.
- Keep an eye on the developing guidelines from the GDPR Article 29 Working Party
Feel free to reach out to us in the Teamgo dashboard messenger if you have any questions about GDPR - we’d be happy to chat to you about it.