Our CRM software is built with a privacy-first approach, ensuring compliance with privacy laws and regulations across the globe. Privacy is at the core of everything we do.
The General Data Protection Regulation (GDPR) was introduced by the European Union (EU) in 2018 to protect the personal data of EU citizens. The new legislation enshrines the principle that a citizen’s personal data belongs to them and not to the organization collecting it.
Replacing the Data Protection Directive 95/46/EC, GDPR has been designed to protect the data privacy of all EU citizens. It empowers them to control the what, when, how, where, and why their personal data is used, stored, processed, or deleted.
The scope of the GDPR goes beyond the borders of the EU, creating implications for any organization that works with the personal data of any EU resident and making them responsible for the protection of that data.
High standards of data security
At offlineCRM GDPR compliance and data protection are fundamental to our business. We understand that we have a high duty of care to protect our customers’ data, and our internal policies and procedure reflect this. Our approach is open and honest, aiming to give confidence to our customers in our integrity.
It’s important to note: GDPR does not have an accredited certification method, which means there is no GDPR-approved way to demonstrate compliance. If you have questions regarding our compliance please reach out to email@example.com and our CEO (Max Kulgin) will gladly answer any questions you may have.privacy principles
offlineCRM GDPR compliance
How offlineCRM complies with GDPR legislation
offlineCRM complies with the provisions of GDPR both in our capacity as a Data Controller of our customer’s personal data and as a Data Processor for customers of our CRM.
- All customer data is stored within the EU in data centers that are ISO27001 compliant, with data on our production servers encrypted at rest;
- All our sub-processors, where we store or pass personal data, are GDPR compliant;
- We have in place a Data Protection Officer, a Breach Notification Process, and policies for Right to Erasure & Data Portability;
- All our staff are subject to our Customer Data Access Policy enforced in their employment contracts.