Fishbowl takes the care and safekeeping of customer data seriously. It is our business model and has been since we started in the year 2000. Fishbowl’s dedication to maintaining the security of customer data means we are committed to complying with applicable privacy laws wherever we do business. As part of this resolve, Fishbowl is prioritizing compliance with the new General Data Protection Regulations (GDPR) enacted by the European Union which will come into effect on May 25, 2018. The regulation is designed to give EU citizens more control over their data and seeks to unify a number of existing privacy and security laws under one comprehensive law.
We have devoted significant resources towards our efforts to come into GDPR compliance. Similar to existing privacy laws, compliance with the GDPR requires a partnership between Fishbowl and our customers in their use of our services. We have closely analysed the requirements of the GDPR, and are working to make enhancements to our products, contracts, internal processes, and documentation to support compliance with the GDPR.
What Fishbowl Is Doing
In the process of rolling out GDPR compliance, Fishbowl will use existing Fishbowl protections as a stable foundation. For instance, we have always and will continue:
- To accept only opt-in permission-based data from our clients
- To provide a one click unsubscribe functionality on the bottom of all customer emails
- To operate within the requirements of the currently applicable data privacy frameworks including those of the UK and US
As we approach the GDPR Launch date, Fishbowl is completing a number of tasks designed to assess systems and ensure compliance, specifically:
- Conducted an internal Data Protection Impact Assessment (DPIA) to discover what information we collect and how we use it.
- Applied for Privacy Shield Certification
- Updated our documentation and processes regarding data storage and handling
- Implemented systems to ensure that customers and vendors alike are being held to the same privacy and security standards as are necessary to be GDPR compliant
- Updated our wording on customer-facing products and systems to reflect new privacy requirements regarding rights, consent, and transparency
- Ensured that the proper systems were in place to enable data subjects to request copies of their data, amend it, unsubscribe from any mailings they may receive, or delete their profile entirely with a focus on transparency and ease of use.
Online Resources and Documentation
Fishbowl’s commitment to GDPR compliance will require ongoing learning both within the company and among its partnerships and customers. To affect this, we will continue to push out necessary updates to GDPR compliant wording and processes on customer opt-in channels and promotional messaging communications. To learn more about GDPR and read through Fishbowl’s current policies regarding data privacy protections please visit the links below.
From the original source: The Council of the European Union where the legislation was approved. https://publications.europa.eu/en/publication-detail/-/publication/c7d157e6-fccd-11e7-b8f5-01aa75ed71a1/language-en/format-PDF/source-62885347
For more general GDPR readiness portals, we suggest the following:
GDPR FAQs: https://www.eugdpr.org/gdpr-faqs.html