GDPR Compliance
- The EU General Data Protection Regulation (GDPR) represents the most significant overhaul of EU data privacy laws in many years. It was implemented on May 25, 2018.
- The Jarvis Reach team dedicated substantial effort to getting ready for GDPR and continues to work diligently to meet its requirements
What is the GDPR?
- The GDPR regulation is applicable to the data of any EU resident, regardless of the location of the data processor or controller.
- Therefore, if you are using Jarvis Reach from the U.S. to contact other U.S. corporations, the regulation does not impact you. However, if any of your customers or leads are based in the EU, you need to be mindful of GDPR.
- In reality, most companies must consider the implications of GDPR.
Does this affect me?
- The EU General Data Protection Regulation (GDPR) represents the most significant overhaul of EU data privacy laws in many years. It was implemented on May 25, 2018.
- The Jarvis Reach team dedicated substantial effort to getting ready for GDPR and continues to work diligently to meet its requirements
How Jarvis Reach is complying with the GDPR
- Although the GDPR specifically applies to the data of EU residents, we have chosen to broadly implement the regulation’s requirements.
- This approach means that, except in rare instances, we do not limit any privacy-related features based on the geographical location of a data subject.
- Below are some of the measures we’ve undertaken to ensure compliance:
Security
- We prioritize the security of the data we handle with the utmost seriousness. Our entire infrastructure is securely positioned behind firewalls and protection mechanisms. Additionally, all staff connections require two-factor authentication.
- Furthermore, we utilize several third-party services that offer a Web Application Firewall (WAF) and systematically block potential threats.
Our processing is done exclusively in the EU
We exclusively store and process all our data within the EU. Even our off-site backups are kept within EU borders.
Log retention
To enhance, debug, or prevent fraud on Jarvis Reach services, we maintain various logs. We now ensure that these logs are destroyed within four months of their collection date and use them solely for monitoring and debugging purposes.
Data portability
The GDPR grants users the right to download any data they have provided to a particular service, facilitating easier migration to other services.
We believe this is an excellent concept, and Jarvis Reach has always enabled users to download their data.
Systematic pseudonymisation of non-public data
Our applications extensively pseudonymize data to protect the privacy of data subjects. Any attributes that do not need to retain their original form are truncated to eliminate any chance of being linked back to a specific individual.
Right of erasure
As we operate with publicly accessible web data, any information that has been deleted from a website is also eliminated from our database. However, for individuals who wish to expedite the removal of specific data from our index, we provide a straightforward and effective process to assert control over email addresses associated with that data. This empowers individuals to either revise the information or request its complete removal from our database. Home