How it works
The EU General Data Protection Regulation (GDPR) is the most comprehensive change to EU data privacy law in decades. It took effect on May 25, 2018.
The SalesQL team worked hard to prepare for GDPR and continues to do so, to ensure we fulfill its obligations.
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union.
For EU residents, the regulation aims to increase their control over their personal data. For businesses, the GDPR becomes a unifying regulation across the EU.
On May 25, 2018, the GDPR took effect and replaced the 1995 Data Protection Directive.
The GDPR regulation applies to any EU residents' data, regardless of where the processor or controller is located.
This means that if you’re using SalesQL from the U.S. to reach out to other U.S. corporations, the regulation doesn’t affect you. But if some of your customers or leads are in the EU, you should pay attention to it.
In practice, most companies need to take the GDPR into consideration.
Even though the GDPR only applies to data from EU residents, we took the decision to apply the requirements of the regulation broadly.
This means that except in some rare cases, we don’t restrict any privacy-related feature based on the geographical location of a data subject.
Here are some of the actions we’ve taken to ensure we’re compliant:
We’re taking the security of the data we manage very seriously. Our entire cluster is systematically situated behind firewalls and protection mechanisms. Double authentication is required for any staff connection.
We’ve also subscribed to several third-party services that provide us with a Web Application Firewall (WAF) and systematic blockage of potential threats.
We store and process all our data exclusively in the EU. We even store our off-site backups within the EU.
To improve, debug or prevent fraud on SalesQL services, we keep a variety of logs. We now make sure logs are destroyed within 4 months of their collection date, and we never use those logs of anything other than monitoring and debugging.
The GDPR gives any user the right to download any data that they provide to a particular service. This allows for easier migration to other services.
We think this is a great idea and SalesQL has always made it possible for user to download their data.
Our applications heavily pseudonymize data to ensure the privacy of data subjects. Any attributes that don’t need to remain in their original form are truncated to remove any possibility that they may be linked back to a specific data subject.
Because we deal with publicly available web data, information removed from a website is also removed from our database. But if a data subject wishes to speed up the removal of any data in our index, we offer a simple and efficient way to claim email addresses. It is then possible to either update the data, or remove it entirely.