All Collections
5. Security & Privacy
How does Happydemics comply with the GDPR?
How does Happydemics comply with the GDPR?
Support avatar
Written by Support
Updated over a week ago

At Happydemics, we work hard to comply with the EU's General Data Protection Regulation (GDPR), to ensure that we meet our obligations and uphold transparency about everything we do with our clients and how we use data.

Here's an overview of everything Happydemics is doing to comply with the GDPR:

What is GDPR?

The GDPR is a comprehensive personal data protection law that became applicable on May 25, 2018. It replaced existing European legislation to strengthen the protection of "personal data" and the rights of individuals. It is a single set of rules regulating how EU data is processed and controlled.

Does this impact you?

Yes, most likely. If you hold or process someone's data in the EU, the GDPR will apply to you, whether you're based in the EU or not.

Our agreements on the processing of personal data (ATDP)

Strong data protection commitments are a key part of the GDPR requirements. Our Data Processing Agreement shares our privacy commitments and sets out the conditions for Happydemics and its clients to meet the requirements of the GDPR. This agreement can be signed by clients on request.

Our Data Protection Officer

We have a Data Protection Officer and a team to oversee and advise our data management. You can contact our Data Protection Officer using the messaging system or by sending an e-mail to

Supplier coordination

We have reviewed all our suppliers, enquiring about their position on GDPR and have signed data processing agreements with them.

Our security measures

Security is a priority for us. We regularly perform external and internal audits and pentests.

We have a solid security framework and plan to achieve international compliance standards (SOC2, ISO 27001 and Privacy Shield) by 2024.

We have reviewed our internal access design to ensure that the right people have access to the right set of client data. We continue to help our clients and prospects achieve compliance. Here are a few measures you can implement:

  • Understand the requirements of the GDPR and how they impact your business;

  • Map out all the locations where you process data and do a gap analysis ;

  • See how you can leverage Happydemics to help you achieve GDPR compliance. Our audit reports, penetration tests and security documents are available to customers on request ;

  • Review your product roadmap, think privacy when planning ;

  • Talk to your lawyer about what your company needs to do;

  • Stay up-to-date with the guidelines issued by the European Data Protection Board.

Did this answer your question?