GDPR

ISOPlanner and GDPR

ISOPlanner is compliant with the EU General Data Protection Regulation [GDPR].

Privacy by Design
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of personal data, username, password, transaction information and data stored on our servers.

Sensitive and private data exchanges between ISOPlanner and its users happen over a TLS secured communication channel (also known as SSL) and is encrypted and protected with digital signatures. All personal data stored on our servers is encrypted at rest.

Subprocessors
We’ve partnered with various providers to offer a reliable service. All of our partners have a great security track record, take personal data privacy seriously, and are fully compliant with GDPR. We have a Data Processing Agreement (DPA) with each of them.

To be fully transparent, here is the complete list of providers who come in direct contact with our users’ personal data:

Name Services Location GDPR Compliance DPA In Place
Microsoft Office 365, Azure Hosting EU Read more βœ…
Pipedrive CRM EU Read more βœ…
FreshDesk Customer Support EU Read more βœ…
Moneybird Accounting EU Read more (Dutch) βœ…
Make Automation EU Read more βœ…
Stripe Payments Global Read more βœ…
Webinargeek Webinars EU Read more βœ…
Delighted Customer Satisfaction Global Read more βœ…
Usetiful Customer Onboarding EU Read more βœ…

Rights of the data subject

Our users have the right to access, correct, export and delete their personal data. They may request an export of their personal data (structured and machine readable format) by contacting us at support@isoplanner.app. We will respond to and proceed with requests within 30 days.

 

Data Processing Agreement
Find our Data Processing Agreement here: ISOPlanner DPA September