TheyDo’s GDPR commitment

Latest update October 18, 2021

At TheyDo, being a company founded in the EU we are committed to helping our customers with their GDPR compliance Journey at every step of the way.

What is GDPR?

As of the 25th of May 2018, the EU General Data Protection Regulation (GDPR) strengthens the rights of individuals regarding their personal data and seeks to unify local data protection laws across Europe. GDPR requires new or additional obligations on organizations in the EU processing personal data and organizations outside the EU processing personal data of EU residents.

Our commitments:

You can always get access to Your Personal Data.

The right to access, update or delete the information We have on You. Whenever made possible, you can access, update or request deletion of Your Personal Data directly within Your account settings section. If you are unable to perform these actions yourself, please contact Us to assist You. This also enables You to receive a copy of the Personal Data We hold about You.

We follow the instructions of our customers

You have the right to have any incomplete or inaccurate information We hold about You corrected. Our team will always do everything we can to adjust the data if anything is incorrect or you like to see changed. For instance, request erasure or transfer of your data, or withrdawing your consent entirely – it is our ambition to assist you in all of your data protection needs.

Our global subprocessors are qualified

We select subprocessors to support the delivery of our cloud-based services. We take responsibility for them and make sure the right Data Processing Agreements (DPA) are in place. If you have any questions about our data subprocessors, you can find them in the list below or simply ask us for the DPA’s.

We value security

We have installed a program designed to protect the security and integrity of all data we process. For instance, we audit our security measures and in the unlikely event of a security breach, we notify any related customers as soon as we become aware of such events.

Privacy Policy (users and visitors)

List of Data Subprocessors

The EU’s definition of personal data

Full text of the GDPR