The EU General Data Protection Regulation (GDPR) – Key Things to know.
Callinize, Inc., d.b.a. Tenfold (“Tenfold,”) values your privacy and we understand that nothing is more important to our customers than the protection of their data, particularly in light of the EU General Data Protection Regulation (GDPR) which went into effect in May 2018. Below is an outline of the purpose of GDPR and the steps Tenfold has implemented to meet GDPR requirements as part of our ongoing commitment to protect consumer data and help our customers comply with the GDPR.
The GDPR substantially enhanced previous privacy laws to give European consumers better control over their personal data in the digital world. The regulation creates a single set of privacy rules that apply uniformly across the European Union and are directly enforceable in each EU member state. Notable new requirements under the GDPR include increased security standards, breach notification requirements, and most importantly, rights of consumers to access and correct their data, receive a copy of their data (“data portability”), or have their data deleted (“right to be forgotten”).
Personal Data at Tenfold
As part of our Service to you, Tenfold may collect and store your customer’s personal information, such as name, address, etc., from voice, chat, or messaging transcripts and other sources. Tenfold implements stringent security measures to ensure that personal information is protected in our systems. Under the GDPR, Tenfold will be acting as a “Data Processor” to our customers the “Data Controllers.”
Tenfold’s GDPR Compliance
- At Tenfold, we have robust security measures in place designed to meet and exceed your security requirements, including undergoing an annual audit to align to SOC 2 Type 2 standards. For an overview of those measures, please review /security.
- Tenfold has designed mechanisms and procedures to help you manage requests from data subjects for access to personal information, rectification, and/or deletion or personal information.
- Tenfold has robust contractual obligations in place with any third-party provider it may use and ensures to only disclose where necessary for purposes of providing the services or as required to respond to a lawful request by a public authority.
- Transfers of our customers’ personal data in the EU are subject to valid transfer mechanisms that protect the data once it leaves the EEA, such as a data processing addendum including the current European Commission Standard Contractual Clause.
Please do not hesitate to reach out to your account team with any questions or concerns.