The EU General Data Protection Regulation (otherwise known as GDPR) is one of the most sweeping regulatory changes in data privacy laws in the last 20 years. GDPR strengthens data privacy laws across the EU as well as the security and protection of personal data of all EU residents. GDPR was approved by the EU parliament on April 14, 2016, and became fully enforceable on May 25th, 2018. For businesses that aren’t GDPR compliant today may be fined up to €20 million or four percent of global annual revenue.
Pyze Product and Engineering teams diligently worked to ensure compliance for Pyze as a Data Processor and gave our customers the tools they need as Data Controllers. We made changes to the data we collect across all Digital Platforms, how we store user data, and added automation to enable user opt-out of data collection or deletion of users. A listing of the specific changes we made were published in the blog post titled Ready for GDPR.
Providing Users Control of their Data
One of GDPR’s core precepts is giving individuals whose data is being collected, the power to control who can access or not access their data. Pyze has added functionality to allow our Customers to respect granular controls regarding User data privacy rights across all the digital platforms. Customers can use the Pyze SDK to flag that a particular User has requested that their data not be processed, in which case Pyze will no longer process data on behalf of that User till such time the User decides to re-enable data collection. Pyze also provides functionality in the Pyze SDK that enables Users to request that their data be forgotten by Pyze. Details of these capabilities and how to implement them for each Platform can be found in the User Privacy section of each Platform’s documentation.
Pyze supports each individual’s right to access and right to portability of their personal data/ Our customers can submit appropriate requests to Pyze relating to European Users’ exercise of their rights of access, rectification, erasure, or restriction under GDPR by contacting us.