The European Union (EU) is enforcing a new data protection policy called the General Data Protection Requlation (GDPR). The new regulation will come into effect on May 25, 2018. PeopleGoal's GDPR commitment is fully compliant with the new regulation as of the enforcement date (May 25, 2018). The GDPR regulation is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens' data privacy and to reshape the way organizations across the region approach data privacy. The key articles of the GDPR, as well as information on its business impact, can be found on the EU's GDPR website.
The GDPR regulation applies to all organizations within the European Union (EU) and any organizations located outside of the EU in the case that they offer goods and services or monitor the behaviour of EU persons. Specifically, it applies to all companies processing and holding personal data of persons ("data subjects") residing in the EU.
We've been actively working to achieve PeopleGoal's GDPR compliance for all our EU customers. Specifically PeopleGoal has:
PeopleGoal's GDPR readiness has been evaluated and we've made the necessary enhancements to our processes to ensure full compliance.
Any information related to a data subject that can be used to directly or indirectly identify the person. For example:
When you complete our sign-up form we collect some personal information such as name, email and phone number. For example, to create a trial account we ask only for a name, email and password.
Yes, PeopleGoal has a DPA in place, because in some cases we are processors and not controllers of the data. If you require further details please reach out to us via email at firstname.lastname@example.org.
PeopleGoal has acquired its E.U.-U.S. Privacy Shield Framework certification.