Traxsource and GDPR
On May 25th, 2018 The EU General Data Protection Regulation (GDPR) implemented new standards for how companies use and protect EU citizens' personal data and we want you to know how Traxsource has met its obligations.
The most important thing we want you to know is that Traxsource is and always has been fully committed to transparency and ethical behavior. You have our continued word that will never use any of your data in anyway which is disrespectful or unethical. This includes selling your information or generally being creepy.
The following is a general overview of the steps we have taken to ensure we have met our obligations under GDPR.
We've built new features and updated others:
Our development team has built new internal systems which allow us to meet GDPR obligations. This includes:
- Data Portability - If you would like to know what data we have, please email us at firstname.lastname@example.org with a subject line, May I have my data? And our team will provide you a print out in CSV, machine readable format.
- Data Removal - If you would like your data removed, please email us at email@example.com with a subject line, Please delete my data! And our team will immediately remove all of the data we have.
- Email Subscriptions - We have improved the way our system processes "unsubscribes" from our email database including one-click unsubscribe from current subscription and defaulting all new "subscriptions" selections to "opted out"
We've appointed a Data Protection Officer:
We have named a dedicated Data Protection Officer to oversee and advise on all data management throughout all of our internal systems. If you would like, you can communicate with our Data Protection officer.
We have purged unnecessary data from our systems:
We audited the data we collect and opted to remove many pieces of data we had previously held as it was not being used and did not we feel we needed it. Some of these include, Facebook User Data, City, State and Zip code data.
We reviewed all 3rd party vendors:
We're reviewed all our 3rd party vendors to ensure all 3rd party systems we use are GDPR compliant. This includes things like Google Analytics & Zendesk Suppor
We have taken new security measures:
Traxsource has always taken security seriously and uses all industry standard best practices to remain compliant. Things like PCI-DSS compliance and regular external audits are a part of our DNA, but in preparation for GDPR, we have reviewed our internal access policies to ensure only the right people have the access to the necessary level of data.
Based on an exhaustive review by our team in conjunction with third party consultants and external legal counsel we are confident that all of our updated data policies and practices are GDPR compliant. Feel free to contact our data protection officer if you have any further queries or concerns.