GDPR: What you need to know
GDPR stands for the European Union General Data Protection Regulation which will come into full effect on May 25th, 2018. This new legislation aims to improve data protection and privacy for all EU citizens and will have an impact on any company that handles or stores personal data within the EU.
In addition to taking the necessary actions to be fully GDPR compliant, we are committed to making sure Aircall users understand how their personal data is used and protected. This article provides an outline of Aircall's efforts to meet the GDPR requirements.
Your personal data
Most importantly, we will ensure that personal data is kept safe and anonymized in our systems, specifically :
- User information (first name, last name, company, email, phone number, encrypted password)
- Recordings and calls’ metadata (e.g. numbers, duration, quality)
- Company information (name, billing address, phone numbers, users and teams)
We will also ensure that our stack is secured by encrypting all personal data and traffic, ensuring password rotation, restricting access to critical components, organizing external audits and penetration tests.
Finally, we will keep personal data in our system and delete it after one year of inactivity or at any time upon user request.
User content and information
We will ensure that Aircall users consent to the collection, storage and process of personal data in all our products and inform users what specific data we process and what kind of processes we (as Aircall) and our subcontractors might perform, including:
- Routing and distributing calls
- Computing analytics on calls activity
- Integrating third-party CRM (on customer’s choice)
- Logs storing & processing
Partners and subcontractors
All our partners and subcontractors processing personal data are GDPR compliant. To guarantee total transparency, we will be listing all subcontractors we work with, for what purpose, and what data is transferred and/or processed by them.
Are there any legal documents available?
We have released a Data Processing Agreement, which will be sent to you electronically upon request. If this is a required agreement for your business please contact email@example.com.
If you would like more information or have any specific questions, feel free to send us an email at firstname.lastname@example.org.