Getting Ready for the GDPR with Electric Imp

The General Data Protection Regulation (the “GDPR”) is a new law establishing protections for the personal data of EU residents. When the GDPR comes into force on May 25, 2018, most organizations that collect, maintain, or process EU residents’ personal data (regardless of the organization’s global location) will be required to implement certain procedures and safeguards for that data.

Here at Electric Imp, we have always honored the privacy and security of our customers’ information, and from the outset, we have implemented industry-leading security protocols for processing our customers’ data. Electric Imp is committed to be fully compliant with GDPR and to partnering with our customers and vendors to help them in their GDPR compliance efforts.

How is Electric Imp preparing for the GDPR?

Below, we outline some of the steps Electric Imp has taken to prepare for GDPR:

  • Data Processing Agreements: We have put in place a GDPR-compliant Data Processing Agreement for Electric Imp’s processing of personal data under the GDPR on behalf of our enterprise customers. If you are an enterprise customer and your use of Electric Imp requires us to process personal data within the scope of the GDPR, please request a copy of the DPA by contacting legal@electricimp.com.
  • Vendor Agreements Review: To ensure that our customers’ personal data is protected, we are reviewing our vendor agreements and making sure GDPR-compliant terms are in place with vendors that may process personal data on our behalf.
  • Enhancing Data Security and Integrity: We’ve been conducting reviews of our data and security systems to ensure our internal documentation and policies are in line with the GDPR principles.  We are committed to putting additional technical safeguards in place to provide even higher levels of protection for data as our products and services expand.
  • Data Subjects Requests: Electric Imp has defined processes to respond to any data subject requests that we may receive.
  • Updates to our Policies: We have updated our Privacy Policy (which goes into effect on May 25, 2018) informing our users of their rights under GDPR and have published a Cookies Notice.  We are also implementing various internal policies to further embed GDPR requirements within our company.

We look forward to sharing more details on the GDPR and our work to help you attain GDPR readiness and maintain compliance.  If you have any questions about our GDPR preparation or how we can help you in your GDPR compliance efforts, please contact us at info@ElectricImp.com.