Yes, we are compliant with the GDPR.
We put an incredible amount of effort into this topic.
If you need a DPA (Data Processing agreement), please contact us
. We are storing all data in the EU, if we have a sub-processor which is processing not in the EU (Intercom), we ensure through an EU-US Privacy Shield and a DPA with them to have an adequate security standard.
You can find us here gdprtracker.io
.EU-US Privacy shield:
We are an EU registered company, so we don't need to be certified as EU-US Privacy Shield.
applies to every user of Usersnap and its website.
Our application are hosted by Amazon Web Services (AWS).
We use Amazon's hosting locations eu-west-1 (Ireland) and eu-central-1 (Frankfurt). All services are only accessible from our Virtual Private Cloud (AWS VPC).
AWS is ISO 27001 and SOC 1-3 certified. The access to our data centres is secured through VPN and 2 factor authentication.Application:
All our connections are encrypted via Transport Layer Security (TLS) with version v1.2. All our servers and components having the latest version of software and security patches. We are working permanently to prevent SQL injections, XSS vulnerabilities, and other common issues.Backups:
Daily backups of our customer's data are performed automatically and stored in AWS.Payment:
We utilize Stripe for credit card payments. (Stripe is PCI compliant). We do not store any credit card on our servers.
If you have more questions regarding GDPR and our compliancy, please contact us