Drawboard and the GDPR

Nathan Field on

On May 25th 2018 the EU General Data Protection Regulation (GDPR) will come into effect to ensure that companies allow all EU citizens the fundamental rights to control and access their data. This will represent one of the largest overhauls of the law governing the control and processing of personal data in decades.

We are posting this article to inform you of our commitment to GDPR.

Access to your data

At Drawboard we believe that the security and integrity of our customers’ data is of the utmost importance. We are taking steps so that our EU users have:

  • Visibility over how and why we use data
  • Opt in consent to marketing channels
  • Ability to delete, rectify, restrict and request data
  • Ability to be notified of all key changes we intend to make to user data

Data Storage and Integrity

We store customer data in the Microsoft Azure cloud with sites based in Australia and USA. We protect your data at rest (when stored) and in transit (when travelling) and digital authorisation is required to access your data through our products (username, password, permissions). Each of our employees is aware of our security policies, and your information is only available to those employees who need it to perform their jobs.

Business processes

When dealing with any user data we have in place procedures to make sure it is protected and can be deleted, rectified, updated and requested.

We have in place a data breach policy, overseen by a Data Protection Officer, and in which all team members have been trained.

We ensure that all third party processors are 100% GDPR compliant before we share your data with them and that they grant you the ability to delete, rectify, restrict and request your data as is your right.

Stay Updated

Fulfilling our obligations to protect your data is important to us. For any further information please reach out to us at dataprotection@drawboard.com.

Any updates will be posted to Drawboard News.

Resources