The General Data Protection Regulation, better known as GDPR, is a regulation in EU law implemented to create a structure for data protection and privacy, and the transfer of personal data outside of the European Union and European Economic Area.
At Twism, we consider data protection to be a top priority. We are dedicated to GDPR compliance and meeting all of its requirements.
What is GDPR?
The General Data Protection Regulation (GDPR) is legislation put in place by the European Union on May 25, 2018. This law is aimed at protecting EU residents and regulating the way in which companies collect, use and process their personal information. Click here to view the entire GDPR regulation.
Our clients have trusted us with their customers’ data, so Twism has been dedicated to comply with the GDPR and will continue to do so as we develop new products and features for our clients and their customers.
How does GDPR affect Twism?
We understand that if consumers are much more at ease knowing that their data is protected, it allows them to feel more comfortable with sharing any necessary, sensitive information. This sense of security is becoming more important as the landscape of eCommerce continues to grow and evolve.
Understanding the significance of such protection, Twism has worked extensively to ensure our solutions comply with GDPR regulations and have identified the ways in which it affects our platform.
GDPR affects Twism in the following ways:
- It has activated Twism to appropriately document and record specific privacy-related decisions made internally by our team, and hold ourselves accountable for our privacy practices.
- To ensure that we and our participating businesses honor the rights of European merchants and consumers over their personal data.
- It has instructed us to make specific contractual commitments to our merchants, and obligated us to obtain contractual commitments when we are using a third-party subprocessor to provide our services.
What does GDPR mean for me and my business?
GDPR allows a sense of security for customers as it provides them with more rights in terms of how their data and personal information is handled and processed.
This regulation applies to all brands and organizations that process personal data of EU citizens, or offer goods or services to these citizens regardless of if the brand or organizations are based in the EU. It creates a framework of guidelines covering the expanding rights of personal data, added security requirements and secure transfer mechanisms between entities both within and outside of the EU.
These specifications put in place by GDPR have set a new benchmark for how brands and organizations do business with their clients. Twism has pledged to follow these requirements to ensure we can provide a secure experience for you and your customers.
Is there anything my business should prepare for GDPR?
To prepare for GDPR, you may want to consider the following:
- Understanding your responsibilities under GDPR
- Taking into consideration your employees and third party obligations
Requirements for your business to comply with GDPR may vary. We recommend consulting your legal advisor to determine how this regulation specifically applies to you and your business. You may also want to consider checking with other third party platforms you use to ensure that they too are GDPR compliant.
How do I remove customer data from Twism?
With GDR every individual has “the right to ask organizations to delete their personal data”. Twism complies with this guideline by allowing all customers to request their information and data be forgotten and removed. To make this request, please email us at firstname.lastname@example.org with details of the data you would like to be removed and we will provide a response within 3 business days.
FINE PRINT: This article is meant for informational purposes only. This is not legal advice. For guidance on how your business can become GDPR compliant, we recommend contacting your legal counsel.