The new requirements that come with GDPR puts significant pressure on all companies that handle and store personal data
GDPR stands for General Data Protection Regulation and is a new regulation around data protection that is applicable for all organisations in all countries in the European Union. Also organisations outside the EU engaging with EU inhabitants have to follow the regulation.
The regulation came into effect on May 25 2018.
GDPR is designed with the personal integrity of individuals in focus. Today, companies and other organisations are collecting information about people in various ways and for different reasons. In many cases, those reasons and methods are fully reasonable. GDPR has been developed to protect people against those that are not. As a person, you own the data about yourself and should thus have full control of that information. The new regulation will enforce those rights further providing individuals with the right to request data from organisations, understand how data will be used etc.
Most companies and other organisation collect and store data about people in some way. Is can be information about customers, suppliers and employees. As a legal entity you are liable for managing that data correctly. Fines have been set in place to enforce the regulation for companies with up to 4% of global gross turnover or at least 20 MEUR, whichever is highest.
Upsales is working with legal advisors to enable you as a customer to comply with the regulations.
One important part is to enrich all forms and landing pages with opt-in functionality to collect consent from contacts filling those out.
Upsales offers the possibility to anonymise contacts with automated and manual processes.
The automated processes can be customized based on a number of parameters that you decide. The manual processes support the ability to manually be removed from your records at a person's request.
Anonymization can be done by deleting the person and data associated with them. Another option is to replace all personal information with hashed data. This will allow you to still see that you had a meeting or activity with a specific company but not with whom. Upsales offers both approaches.
In a sales persons daily work, notes are frequently written to remember important things relevant to the continued dialogue. In order to ensure that personal data is not accidentally stored as a free text, Upsales will remind users of the GDPR guidelines in the form of warnings in note fields.
Notes can also be deleted as a part of an anonymisation procedure.
An important part of GDPR is the possibility for people to request data export from companies. Upsales will make this process simple and export data in human readable formats.
On the contact card in Upsales you will be able to specify the purpose for saving information about a person. As a superuser, you can decide if the field should be mandatory.