The General Data Protection Regulation (GDPR) came into force in May 2018 and was the most important change in data privacy regulation in 20 years.
GDPR reshapes the way in which sectors manage data, as well as redefines the roles for key leaders in businesses, from CIOs to CMOs. CIOs must ensure that they have watertight consent management processes in place, whilst CMOs require effective data rights management systems to ensure they don’t lose their most valuable asset – data.
At EasyDigital.Tax we are comitted to fully compy with GDPR and will support our customers with thier own GDPR compliance obligations.
We use secure data centers located only in the UK on servers that are owned and managed by us. Where we need to transmit data between data centers (e.g to maintain backups and high availability), we always used encrypted connections. We store all sensitive data in encrypted form, passwords are only stored as forward only hash, which is 'salted' for uniqueness. This means that there is no way to find out any passwords from looking at the data.
We provide you with screens and utilities to review and update your and where applicable your clients data. If you decide to delete any data, then once it is marked for deletion, we will at the next deletion cycle, remove the records(s) from our system.
If you wish to stop using our service, then you may request to either have all data deleted or retained for future use, if you select the latter then you will still have access to review and delete.
If you have any further questions about GDPR and EasyDigital.Tax, please contact us