Last revised: April 24, 2022
EU Data Protection & GDPR Compliance
The EU General Data Protection Regulation (GDPR) is the most comprehensive change to EU data privacy law in decades. It will take effect from the 25th May 2021.
How ReplayBird is complying with the GDPR
The ReplayBird team is fully committed to complying with the requirements of the GDPR. We have taken these new GDPR requirements to heart and made changes to our products, contracts and policies to ensure that we are fully in compliance with the GDPR before May 25, 2021. ReplayBird services will comply with the GDPR when it becomes enforceable on May 25, 2021.
Here are some of the actions we’ve taken to ensure we’re compliant:
We’re taking the security of the data we manage very seriously. Over the last few months, our architecture has been vastly upgraded: Our entire cluster is systematically behind a firewall.
ReplayBird's service is hosted entirely using DigitalOcean. This includes all of our offered services, and data storage (including backups). While ReplayBird has not undergone a SOC audit (due to the prohibitive cost relative to our current size), DigitalOcean undergone such audits and provides reports on their website.
To improve, debug or prevent fraud on the service, we keep a variety of logs. We now make sure logs are destroyed at most 3 months after their collection date. We never use those logs of anything else than monitoring and debugging.
Right of Access
You may request to access your Personal Information and obtain a copy of Personal Information which is being processed by ReplayBird. In the event that you request to know what Personal Information is being processed by us, we will provide you with the following information free of charge:
- purpose of processing; - categories of Personal Information processed; - recipient(s) of Personal Information; - length of time during which the Personal Information will be stored; - your privacy rights; - information on data transfers.
Such requests will be made by emailing us at [email protected]
Right of erasure
Because we deal with publicly available web data, information removed from a website are also removed from our database. But if a data subject wishes to speed up the removal of any in our index, you can claim email addresses through our Contact Form.
Any other questions?
Our work related to the GDPR is still in progress and you can expect this and related pages to be updated regularly. Should you have any other question, we’re here to help: [email protected].