Our Commitment To Protect Your Data
Last revised on April 24, 2019, effective as of June 25, 2019
The General Data Protection Regulation (GDPR), is a European privacy law approved by the European Commission in 2016 and will go into effect May 25th 2018. The GDPR will replace a prior European Union privacy directive known as Directive 95/46/EC which has been the basis of European data protection law since 1995. The GDPR is an attempt to strengthen, and modernize EU data protection law and enhance individual rights and freedoms, consistent with the European understanding of privacy as a fundamental human right. The GDPR regulates, among other things, how individuals and organizations may obtain, use, store, and remove personal data. In a nutshell, it's giving EU citizens and residents control over their personal data while simplifying the regulatory environment for international business that takes place in the EU.
The Data Protection Principles include requirements such as:
GDPR adds some new requirements regarding how companies should protect individuals' personal data that they collect and process. It also raises the stakes for compliance by increasing enforcement and imposing greater fines for breach. Beyond these facts it's simply the right thing to do. At AuditShipment we strongly believe that your data privacy is very important and we already have solid security and privacy practices in place that go beyond the requirements of this new regulation.
Consent is collected from the customer at the time of signup for storing information such as email address, phone number, credit card details. We ensure all data is stored in an encrypted format.
We have reviewed and identified all the areas of AuditShipment where we are collecting and processing customer data; Auditshipment collects information such as shipping account details and personal information such as email address, credit card information etc at the time of registration. Under no circumstances will Auditshipment share any customer information with third party services. Auditshipment will purge all data associated with the customer when the service is unsubscribed. Our Privacy Policy identifies what we are doing with the data we collect and how we manage consent.
At AuditShipment we practice transparency internally and we believe that transparency extends to our customers. With our updated Terms of Service and Privacy Policy we openly describe what personal data we are collecting, processing, why, how we use it, who we share it with and how long we store it. We have always made an effort to keep the language in our Terms of Service and Privacy Policy as clear as possible and we have updated these notices to describe how we are respecting and protecting your personal data. We hope you find it concise, transparent, intelligible and easily accessible.
We are committed to helping our customers meet the data subject rights requirements of GDPR. AuditShipmentâs algorithms have read-only access to all your shipping data. Our algorithms have been designed to require a minimum number of attributes from your shipping account.
We are aware that if you are working with EU customers, you need to be able to provide them with the ability to access, update, retrieve and remove shipping data. We got you! We are set up to retrieve any shipping data that our customer requires. Our customer support team is here to serve you with your shipping data on request. Please contact us at [email protected].
Having a managed data protection impact assessment (DPIA) process is a requirement for GPDR. A DPIA process is simply a way to help us identify and minimize the data protection risks of a project. The AuditShipment engineering team has always undergone security and privacy due dilligence when making tooling and implementation decisions, so this requirement is an easy one for us. Any time we introduce a change to the way we handle personal data, we spend time discussing the potential impact on customers of AuditShipment and possible privacy and security risks to personal data. If any risk is identified, no matter how small, our product and engineering teams collaborate on a solution that will mitigate the data privacy and security risk to anyone who interacts with the AuditShipment platform. We will continue to execute this risk assessment process as we expand the AuditShipment offerings.
We already have a breach management and communication plan in place to support the requirements of HIPAA have updated this existing process to comply with the GDPR regulations concerning the escalation process and requirements for data subject notification.
We are working with our customers to answer any questions and address any concerns regarding how we protect their personal data and gearing up for GDPR. If you have any questions, please don't hesitate to reach out.
AI-powered shipping insights for in-depth cost analytics and monitor shipments & delivery exceptions