Epiphany General Data Protection Regulation Compliance
On 27 April 2016, the European Parliament and the European Council adopted legislation known as General Data Protection Regulation (GDPR), which became enforceable 25 May 2018.
GDPR is intended to unify and strengthen data privacy for individuals located in the European Union (EU). GDPR also extends the applicability of EU data privacy legislation to non-EU companies who store or process data on EU residents and increases the fines that may be levied against companies who are responsible for preventing breaches of personal data or who violate GDPR requirements.
We recognize the importance of adhering to regulations to advance information security and data privacy for citizens of the EU. We’re committed to helping our customers and users understand, and where applicable, comply with the General Data Protection Regulation (GDPR). On this page, we explain how we help our customers comply with the GDPR.
We appreciate that our customers have requirements under the GDPR that are directly impacted by their use of our Services. Below are the measures we have implemented across our Services:
Protecting our customers’ information and their users’ privacy is extremely important to us. As a cloud-based company entrusted with some of our customers’ most valuable data, we’re making constant investments in security.
Our application is built on world-class, modern cloud infrastructure designed to ensure the safety of your data. We have carefully chosen proven third party cloud providers that have a great security track record, and we employ best practices including regular backups, data encryption, logging, and common attack prevention.
Read more about our security practices.
To comply with European Union data protection laws around international data transfer mechanisms, we offer European Union Model Clauses, also known as Standard Contractual Clauses, to meet adequacy and security requirements for our customers who operate in the European Union and the United Kingdom.
We help you honor your customers’ requests to export their data. Epiphany provides data portability and data management scripts for exporting product and user data. You can request for data exports by reaching out to us at firstname.lastname@example.org
We also help customers meet obligations under the GDPR ‘right to be forgotten’ (or ‘right to erasure’) clause by making it easy to request the deletion of personal data from Epiphany.