C-One and GDPR compliance

On May 25, 2018 a new law that regulates and protects personal integrity online will come into action, this will result in new terms and conditions that you as a user and costumer of the Crowdsoft app need to know about.

We at Crowdsoft are glad to see a change in how user information is handled, we strive to give users more power to control how information about them is collected and stored. But as a start, what is GDPR?

GDPR stands for General Data Protection Regulation. This law will replace already existing regulations and is designed to strengthen personal protection on the internet.

The main changes with GDPR involves:

• Consent – Companies will no longer be able to use long and complex descriptions of their terms and conditions. GDPR demands easily accessed terms and policies. Consent must be clear and distinguishable. It must also be as easy to withdraw consent as it is to give.
• Breach notifications – If there is a breach risking that personal data cannot be secured, the company using C-One must report this to users and costumers within 72 hours.
• Right to access – Users have the right to know how their personal information is being used and processed. The company must provide a copy of all the personal data collected if a user asks for it.
• Right to be forgotten – You as a user have the right to get all your personal data deleted if there are no compelling reason to keep it. Crowdsoft wants to ensure your control of your own personal data, if you wish, you can have your information deleted.
• Right to extract your data – You have a right to get your data extracted from the system.
• Right to say no – Your personal data cannot be used in positioning tools without your consent. Such function can always be turned off by the user. If there is not a specific reason to use your information.

WHAT IS PERSONAL DATA?

The term ‘personal data’ involves any information that can be related to an identified or identifiable person, directly or indirectly. This means that personal data could be anything, but if it’s something that can be connected to you as a person, and is web-based, it goes under personal data in GDPR.

If you want to learn more about the GDPR and how it affects you, we recommend you read about the new law on their website. 

What has Crowdsoft done to ensure data protection security?

Crowdsoft is an app for creating effective communication and security when it matters the most. Therefore, we take the integrity of our users very seriously. Crowdsoft has taken steps of actions to secure the app for the upcoming regulation by:

• Easily accessed terms and conditions – To ensure that users always have access to information about how their data is used, we have added a section in the app where terms and conditions can be read at any time.

• Strengthening user consent – A user has the right to choose what information is shown through the app. Geographical positioning can be turned off and the user can edit and control the personal information that is registered through the app. The account can also be deleted.

• Internal discussion and training – Our employees receive information and training about GDPR to better understand how to handle costumer data.
• Re-writing data protection agreement – our terms and policies regarding new updates will be displayed for users to agree to when logging in to the app.
• Data protection officers – The new GDPR regulation requires companies to appoint a data protection officer that have the responsibility to ensure that the new regulations are followed.