GDPR is a European directive that protects the residents of Europe and we forsee it being used world wide very soon.
Are SAM GDPR Compliant?
Yes, we are. There were minor changes we put in place, but have been aware of data protection for a long time.
What have we done to become GDPR compliant?
The main areas (there are more but these are the important ones) include:
Consulting with data handling professionals.
Gaining clarity for the customer of what data we collect.
Ensure we have Data Processing Agreements with the companies we use to store our data.
Making sure we can delete your information if we need to.
Giving you the option to opt out of mail or SMS promotional content.
1. What personal data we hold about you:
Everything we hold about you is in our Data Processing Agreement which can be accessed in PDF form within your mySAM resources.
2. Data Processing Agreements
We have DPAs with our sub-processors which hold your personal data. Those sub-processors are mentioned in our DPA which is available within the resources section of your mySAM.
These sub-processors have either changed their Terms of Service to accommodate standard GDPR data processing information or we have a separate Data Processing Agreement with them.
For GDPR purposes, an overview of the sub-processors engaged by SAM:
SmartDebit – Secure storage of direct debit information
smsbroadcast – SMS text messaging service
MailChimp – Email messaging service
AWS – Amazon web hosting servers
QuickBooks – Secure banking software
Worldpay – Secure online payment software
Zoom – Video application
Stripe – Secure webpage payment software
Private Internet Access – Virtual Private Networks
We use our own internal software system for CRM and bookings.
There are hundreds of tiny little things, most of which are simply internal processes. The main thing is your rights.
Your right to have your data removed being the main one.
If this is something you wish to happen, you can simply email us.
The other right which is popular is your right to see any data held about you. This is something we will be happy to provide on request.
SAM supports the GDPR processes put in place to make companies aware and responcible with their data.
It is a new system in place and we will be continuing to develop alongside it to be compliant in all areas.