From the 25th of May 2018 onwards, organizations collecting and processing personal information and data of EU based individuals are required to comply with the General Data Protection Regulation (GDPR). This statement is intended to provide you guidance on how RecordPoint processes and handles the data we collect when you use our cloud services.
What is GDPR?
The General Data Protection Regulation (GDPR) is new legislation designed to give EU residents more control over their personal data. We share our personal data on a daily basis with the many different online services & platforms that we use. Think of all the times you have provided your name, email and date of birth when signing up for social media platforms and other online services. GDPR places more stringent legal requirements on the companies and organizations that collect and process your personal information.
There are three classifications that an organization can fall into under GDPR:
What type of organization is RecordPoint under GDPR?
RecordPoint is classed as a data processor under the new GDPR legal framework. We process data and information from your content repositories managed by Records365. However, we have limited knowledge of the data being processed from the content repositories that Records365 manages. Also, RecordPoint only processes data per our customer’s instructions. Therefore, RecordPoint is a processor of customer data ingested by Records365; the customer is a controller.
What data does RecordPoint collect?
How does RecordPoint ensure that my data is safe and secure?
If you have any more questions with regards to GDPR and it applies to your usage of RecordPoint’s cloud services, please contact firstname.lastname@example.org.