We understand how important the privacy and security of your data is to you and have strict controls in place to secure your data, while achieving and maintaining compliance with regulatory requirements and guidelines on security and quality. Texthelp Ltd.’s third-party audits, certifications and legal commitments help support our compliance.
To comply with GDPR and in the interest of best practice, we have undertaken the following steps:
We already have strong Data & Privacy Policies, and we regularly revise them to meet the requirements of ISO 27001 accreditation. Texthelp recognise that the GDPR will help us move towards the highest standards of operations in protecting customer data.
Texthelp Billing & Contact Data is stored in Amazon Web Services (AWS) which may involve the transfer of Personal Data to the United States of America. Texthelp has entered into Standard Contractual Clauses with AWS in compliance with Article 46 of the GDPR.
Texthelp provides opportunities for staff to explore Data Protection and GDPR issues through training, team meetings, and supervisions. All staff are required to sign an electronic form signifying that they have read, understood and accept Texthelp’s Information Security policies.
Texthelp complies with Article 15 of the General Data Protection Regulation (GDPR) and the rights of the Data Subject with regard to personal data that we may store about them.
Article 15 includes (but is not limited to) the requirement of the Data Controller (where Texthelp is the Data Controller) to provide the Data Subject with information relating to:
We may be providing much of this information already in our privacy notice.
A Data Subject Access Request may be made via this form. It can also be made via any medium so you are not obliged to use this form to make a request. Alternatively you may telephone using the numbers on our 'Contact Us' page or email to firstname.lastname@example.org
Texthelp will fulfil a Data Subject Access Request within 30 days of the request being received or will provide information explaining why the request cannot be fulfilled such as those restrictions described in Article 23.