The European Union's General Data Protection Regulation (GDPR) approved and adopted by the EU Parliament in April 2016 aims primarily to give control back to EU citizens and residents over their personal data, and to simplify the regulatory environment for international business by unifying the regulation within the EU.
As the GDPR came into effect on the 25th of May 2018, all companies processing and storing the personal data of subjects residing in the EU must comply with it, regardless of their location.
SourceScrub is able to comply with the European Union's General Data Protection Regulation (GDPR). A priority at SourceScrub is the security of our customers' data. We have followed the EU's transition to the GDPR and continue to take important strides in the area of data protection, many which are applicable under the GDPR.
We can provide further details about categories of data, assistance in facilitating deletion of data subjects, and discuss the impact of such deletions. We are also introducing features into the SourceScrub application to help you meet requirements defined by the GDPR.
We value our customers and take all reasonable steps to protect their privacy. We follow up to date industry standards in securing infrastructure and how it relates to application code.
If a data breach does occur, SourceScrub is ready to respond in accordance with the GDPR.
SourceScrub will respond in accordance with rights granted by the GDPR when we receive a request to provide or delete a data subject's Personally Identifiable Information (PII).
SourceScrub stores PII on infrastructure we control and on 3rd Party systems for billing purposes. That data is comprised of:
|Entity||Purpose / Data Stored||GDPR Compliance|
|Freshbooks||Cloud based financial software. Data Subject's name, email and company name and billing address||Compliant|
|Azure||Cloud computing platform. Data subject's name, email, phone||Compliant|
|Office 365||Cloud productivity and collaboration tools, from Microsoft. Data subject's name, email, phone, company name and billing address||Compliant|
|Salesforce||CRM cloud based software. Data subject name and email, phone, company name and billing address||Compliant|
|Sendgrid||Email delivery assurance cloud based software. Data subject name and email||Compliant|
We are here to help, we can help customers and their SourceScrub administrators meet requirements outlined under the GDPR. If you have any questions about this or you want to access, correct, or request that we delete your personal data email us directly.