At Happydemics, we work hard to comply with the EU's General Data Protection Regulation (GDPR), to ensure that we meet our obligations and uphold transparency about everything we do with our clients and how we use data.

Here's an overview of everything Happydemics is doing to comply with the GDPR:

The GDPR is a comprehensive personal data protection law that became applicable on May 25, 2018. It replaced existing European legislation to strengthen the protection of "personal data" and the rights of individuals. It is a single set of rules regulating how EU data is processed and controlled.

Yes, most likely. If you hold or process someone's data in the EU, the GDPR will apply to you, whether you're based in the EU or not.

Strong data protection commitments are a key part of the GDPR requirements. Our Data Processing Agreement shares our privacy commitments and sets out the conditions for Happydemics and its clients to meet the requirements of the GDPR. This agreement can be signed by clients on request.

We have a Data Protection Officer and a team to oversee and advise our data management. You can contact our Data Protection Officer using the messaging system or by sending an e-mail to privacy@happydemics.com.

We have reviewed all our suppliers, enquiring about their position on GDPR and have signed data processing agreements with them.

Security is a priority for us. We regularly perform external and internal audits and pentests.

We have a solid security framework and plan to achieve international compliance standards (SOC2, ISO 27001 and Privacy Shield) by 2024.

We have reviewed our internal access design to ensure that the right people have access to the right set of client data. We continue to help our clients and prospects achieve compliance. Here are a few measures you can implement: