GDPR adalah singkatan dari "General Data Protection Regulation". Ini adalah salah satu perubahan paling penting yang dibuat untuk peraturan privasi data dalam dua dekade terakhir. Ini menetapkan kerangka kerja baru untuk menangani dan melindungi data pribadi penduduk yang berbasis di UE dan berlaku sejak 25 Mei 2018. Ini memberi warga Uni Eropa kontrol yang lebih besar atas data pribadi mereka dan meyakinkan mereka bahwa informasi mereka dilindungi.
Meskipun GDPR adalah kerangka perlindungan data bagi warga negara yang tinggal di UE, GDPR juga berlaku untuk semua perusahaan yang menangani data pribadi individu dari UE. Dengan cara ini, hampir setiap perusahaan berada di bawah yurisdiksi GDPR. Jika Anda adalah seseorang yang menyimpan atau memproses data pribadi saat menawarkan barang atau jasa Anda di UE, maka undang-undang juga berlaku untuk Anda. Juga, jika terjadi pelanggaran undang-undang GDPR, Anda dapat menghadapi denda dan hukuman hingga 20 juta dolar atau 2% hingga 4% dari pendapatan tahunan organisasi tergantung pada mana yang lebih tinggi.
Xoxoday acts both as a Data Controller and as a Data Processor within the realm of GDPR compliance:
Sebagai Pemroses Data, kami memproses data pribadi atas nama pelanggan kami karena layanan produk kami mencakup hal itu.
As a Data Controller, you're responsible for safeguarding the data of your customers/employees data as they interact directly with products at Xoxoday. Customer Companies determine what data on Employee Users are collected and how it is used. If you wish to exercise your data subject rights to review, rectify, delete or port your Employee User Personal Data, please contact the controller to make such a request. If you make the request to us, we will work with the controller to process and evaluate such request to confirm whether deletion is required by GDPR.
Xoxoday takes data integrity and security very seriously. Xoxoday is fully committed to upholding the rights data subjects are granted under the applicable data protection laws. Over 2 million customers across the globe trust us with their data security. Due to the nature of the product and service we provide, it is important that we acknowledge that our responsibilities both as data controller as well as a data processor. Customer data security is an essential part of our product, processes, and team culture. Our facilities, processes, and systems are reliable, robust, and tested by reputed quality control and data security organizations. We continuously look for opportunities to make improvements in the dynamic technology landscape and give you a highly secure, scalable system to provide a great experience.
We have also appointed a Data Protection Officer (DPO) who looks after any concerns of data infringement across our three products. For any concerns, you can write to [email protected]
We have amended our Data Processing Addendum to be compliant with the data processing requirements of GDPR. if you are using Xoxoday products and have agreed to our terms of service, you do not need to sign an additional Data Processing Addendum. As of May 25th, 2018, our user terms of service include a provision to ensure compliance with GDPR. If you are the organization administrator and would like to sign a DPA with us, please write to [email protected]
Each of Xoxoday’s vendors and sub-processors has an executed Data Processing Addendum to ensure compliance under the EU GDPR requirements. An audited minimum relevant set of data is shared with each vendor.
The information we collect to deliver our services, and how do we process it, and how do we use it is covered in the Privacy policy. We take your privacy seriously. If you have any questions about this Policy or about privacy at Xoxoday, please contact us at [email protected].
Xoxoday regularly evaluates enforcement of - security policies, utilization of dynamic access controls, identity verification of those accessing data, and implementation of protection mechanisms against data breach. Relevant certifications include ISO 27001, SOC II compliant.
Penafian - Informasi yang disajikan di sini tidak boleh dianggap sebagai nasihat hukum. Kami menyarankan Anda mencari nasihat hukum tentang apa yang perlu Anda lakukan untuk mematuhi persyaratan GDPR.
Hubungi kami dan beri tahu kami bagaimana kami dapat membantu.
Nreach Online Services INC
8 Ste A Green, Kent, Dover, Delware -19901, Amerika Serikat
Nreach Online Services Limited
Dogpatch Labs, Gedung CHQ, Custom House Quay, DO1 Y6H7, Dublin, Irlandia
Nreach Online Services Limited
17 Bhagyalaxmi Square, Lantai 2, 18th Cross Road, HSR Layout, Sektor 3, Bengaluru, Karnataka - 560102
Nreach Online Services Limited
109 North Bridge Road, #05-21, 179097 Singapura