GDPR

General Data
Protection Regulation

As a European automotive IT company, data security and protection has the highest priority for us at EASI’R, ever since. Protecting our customers’ and users’ data is an integral part of our business and we take compliance with all laws and norms very seriously.

In that context, we have also welcomed the new General Data Protection Regulation by the EU which strengthens and unifies data protection laws for all individuals within the European Union.

We are GDPR compliant

Having started with preparations for the GDPR in May 2017 already, together with external partners and consultants, we are happy to ensure that we have achieved GDPR compliance before the due date, the 25th of May 2018.

However, our own ambition to achieve and prove a highest standard of data protection has started years before the GDPR has become effective. One of the most recent proofs is that EASI’R has been ISO 27001 certified since 2016. Back then, we belonged to an exclusive group of companies in Denmark, the country where the EASI’R development hub is located, that have achieved the ISO certification. In 2017 and 2018, we passed the ISO re-certification process and will of course continue to prove that we are ISO compliant in the years to come.

EASI’R GDPR documentation

Below, you can find a condensed version of our GDPR Roadmap that has led to our achieved GDPR compliance.

May 2017: Identifying all areas of our product and our business impacted by the GDPR and developing a strategy to implement the adjustments.

October 2017: Adjustment of our Data Protection Agreement.

November 2017: Adjustment of legal documentation to reflect any product changes and include the mandatory processor provisions required by the GDPR (article 28).

December 2017: Perform the necessary changes/improvements to our product based on the requirements.

February 2018: Implement the required changes to our existing ISO 27001 internal processes and procedures required to achieve and maintain compliance with GDPR.

March 2018: Testing of all changes to verify and validate compliance with GDPR.

April 2018: Finalization.

May 2018: Communication – updating our Privacy Policy.

25.05.2018: GDPR compliance achieved and effective for EASI’R.

GDPR implications for EASI’R customers

Compliance with the GDPR requires a partnership between EASI’R (Loyalty Factory GmbH/Loyalty Factory ApS) and our existing and potentially new customers regarding their use of our services. EASI’R complies with the GDPR regarding our services to our customers, including contracts, documentation, and product.

Depending on your situation and jurisdiction, please ensure that your Terms of Service or Privacy Policy clearly and correctly communicate to your users how you are using EASI’R on your website or app. The GDPR can heavily penalize you if you are not fulfilling this requirement properly. We suggest that you review your policies with this in mind.

Please note that we cannot provide an overview of all the changes that might affect you, as a result of using EASI’R.

Contact us
regarding the GDPR

Please do not hesitate to reach out to us if you have any further questions regarding EASI’R & the GDPR. Just get in touch via the link below and we will be happy to clarify your questions.