GDPR
Like many other companies, Docmosis has reviewed its company-wide compliance strategy with respect to the EU General Data Protection Regulation (GDPR), which came in to effect from 25th May 2018.
In doing so Docmosis completed an audit of all data flowing in and out of our organization, either in our capacity as a Data Controller or as a Data Processor.
As a result we have: reviewed and updated our Privacy Policy and Cookie Policy; ensured we obtain consent before collecting personal data of our customers; provide access to that data; and provide the right to be forgotten in accordance with our Privacy Policy. We have either signed Data Processing Addendums with relevant third-party service providers or moved away from non-compliant providers.
Docmosis now offers a GDPR compliant Data Processing Addendum to our standard License Agreement so that customers can use our services in a GDPR compliant manner and we have executed Data Processing Addendums with our subprocessors.
We are committed to: a process of continual improvement of our privacy and security measures; notifying regulators of personal data breaches; and promptly communicating any such breaches to our customers.
GDPR - FAQ
What is the GDPR?
Who does the GDPR apply to?
Is Docmosis a Data Controller or Data Processor?
Data Controller – Docmosis acts as a data controller when we collect and store account and contact information of our customers.
Data Processor – Docmosis acts as a data processor when our customers use Docmosis services to process personal data. Under these circumstances our customer may act as a data controller or data processor, and Docmosis acts as a data processor or sub-processor.
Can I use the Docmosis Cloud to Process Personal Data?
- Sign the Data Processing Addendum to our standard License Agreement.
- Use the Docmosis Cloud in accordance with: Guidelines for Using Docmosis Cloud Services in a GDPR-Compliant Manner.
How do I enter in to the Data Processing Addendum with Docmosis?
- Your personal name
- Your position
- Company name.
We will then send you a copy of the Data Processing Addendum that you can review and sign electronically.