The EU’s General Data Protection Regulations (GDPR) take effect 2018 May 25, and we are fully behind the spirit of these regulations for a safe and secure Internet. We aspire to embrace privacy by design and, whenever possible, to not collect and store personally-identifiable information.
Overall, we aim for privacy by default: if data collection is not integral to the way our product works, then we won’t collect it. You may see few banners or forms requesting consent for us to collect personally-identifiable information for tracking or other purposes. We don’t deem this information necessary to provide service to you, and we choose not to engage in activities and strategies that make this data relevant.
At any time, you may request your information to be exported and sent to you for review, and we promptly honor any requests by you to have your information deleted and forgotten.
What has Thirdkind done to prepare for the GDPR?
Thirdkind has carried out a GDPR readiness project across our organisation. As part of this project, we analyzed each of our product offerings and our internal policies with a view to becoming GDPR ready. These steps included:
Dedicating resources to privacy, data protection and the GDPR;
Asking external experts from consulting firms to assist with Thirdkind GDPR readiness efforts
Conducting an organisation-wide review of all personal data processing activities to ensure alignment with GDPR requirements
Creating Thirdkind security framework to meet the GDPR’s Article 32 security requirements
Working on Data mapping: be constantly sure of the personal data we colled from users
Working on Deletion: a user has the right to request that we delete all of their personal data
Working on Access: a user can request access to a copy of the personal data that we have collected
Working on Modification: if a user asks to change their information, we can do so within our admin portal