GDPR compliance for Jivrus Products
What is GDPR?
The General Data Protection Regulation (GDPR) is a European Union (EU) regulation that mandates how an organization should handle personal data.
The General Data Protection Regulation (GDPR) is aimed at giving citizens throughout the European Union (EU) control over their personal data. GDPR applies to you if you are a European Union citizen or, as a business, if your email subscribers are EU citizens, or you deal with any kind of personal data of EU citizens.
How our products enable you to comply with GDPR policies
Customer operates as the data controller and Jivrus operates as a data processor. Customer has the responsibility for ensuring that the personal data of subjects they are collecting are being processed lawfully and, similar to controllers, processors, that processes personal data on behalf of a data controller, are expected to comply with the GDPR.
Data Storage and Processing
Customers data is stored in their Google account: inside Google Sheets, Docs, Gmail, Google Drive or Google Forms. Our add-ons read the data directly from your data source and perform the necessary actions (like reading/writing on Sheets, sending emails, generating documents) without storing any transactional data on our servers.
We store and process user identification, plan subscription, quota, usage analytics data in the Google Cloud database (us-central) and its servers are located in the United States (Central) data center.
We use Google’ Stack driver logging tool for error tracking and debugging errors. It includes stack traces, error messages and the logs
We use PayPal and Stripe to manage your payments. The payment processors only provide the customer’s email address, subscription details and billing address for generating the invoice. We do not have access to any banking or credit card information of our customers.
We do not transfer, sell, make copies, or share any of your data processed by our products to third-party services or companies. We only store data that is absolutely necessary for our products to function.
Subscribers have all their information in Google account: Google Sheets/ Docs/ Forms/ Drive. This allows for easier migration to other services.
Data Erasure (Right to be forgotten)
Subscribers can deactivate products and can permanently delete all their data from the database. You can also contact us to submit a deletion request to permanently delete all your data from our system.
If the users uninstall a product or revoke access to the products from your Google Account, the product will not be able to access any of your data Google or other authorized apps and will instantly stop functioning.
Our products facilitate compliance with GDPR for our users. If the users are dealing with their customers using our products, they need to practice complying with GDPR with their customers' data.