Everyone is talking about this huge change in data privacy regulation. The European Union’s General Data Protection Regulation (GDPR) goes into effect on May 25, 2018. Any company that is not compliant faces fines and penalties.
GDPR affects any organization, regardless of location, that captures and stores the personal data of EU citizens. All companies, large and small, must comply if they collect, store, process, retain, or share this data.
If you’re an ObjectRocket customer, it’s important for you to know that ObjectRocket is considered a “data processor” and the majority of our customers are considered “data controllers”. A data controller controls the purpose and means of processing data. Data processors act on instructions of data controllers.
What does GDPR mean for your business?
Any company that serves European customers (regardless of where in the world they are) and collects or processes their data will have to abide by this new GDPR law. Our client, Braze, has a great online resource available that answers a lot of questions for data controllers.
In some cases, businesses will be able to implement new technology layers internally; but in many cases, organizations will need to rely on external managed expertise to become fully compliant.
How does ObjectRocket handle GDPR?
ObjectRocket is a Rackspace company. As a Rackspace company, we have taken many technology measures, including encryption, to securely backup and restore data, and to ensure data integrity. All Rackspace employees are required to take GDPR training to ensure we are compliant with these regulations and are able to help our customers comply with GDPR.
Here are some helpful links:
- Rackspace Global Data Processing Addendum
- Rackspace data privacy and security policy
- ObjectRocket privacy
- Rackspace privacy statement
- Rackspace Privacy Shield
- Rackspace Certifications
Frequently asked questions we get about GDPR
Can you wipe data upon request?
Yes, as a data processor, if you, as a data controller, request that we delete data, we can do that for you.
Do you store customer data with data from other companies?
No, we do not mix customer data in any way.
Do you transfer data between servers?
We only transfer data upon request of data controllers. We won’t transfer data without your knowledge.
We’re here for you
GDPR can be a bit intimidating. If you want to talk to one of our data experts about staying compliant with GDPR while working with ObjectRocket, we’ve got you covered. Contact us and we’ll be in touch.