Overtracking is committed to protecting the privacy of our users’ data. We are compliant with the General Data Protection Regulation (GDPR), which is a regulation by the European Union that strengthens and unifies data protection for all individuals within the European Union (EU).
Information We Collect #
We collect information about you when you register for our services or when you provide us with contact information. This information may include your name, email address, and company information. We also collect information about how you use our services, such as the IP address from which you access our services and the pages you visit.
Data Security #
We take data security very seriously. We use a variety of security measures to protect your data, including encryption, firewalls, and intrusion detection systems. We also have a team of dedicated security professionals who monitor our systems 24/7.
Data Subject Rights #
Under the GDPR, you have certain rights regarding your personal data. These rights include the right to access, correct, delete, and restrict the processing of your data. You also have the right to object to the processing of your data and the right to data portability.
Data Processing Agreements #
If you are a business that uses Overtracking to process personal data of EU citizens, we will need to enter into a Data Processing Agreement (DPA) with you. This agreement will set out the terms and conditions under which we will process your data in accordance with the GDPR.
GDPR-ready Privacy Policy #
We have updated our privacy policy to be GDPR compliant. This policy explains how we collect, use, and share your data.
Frequently Asked Questions #
We have answered some frequently asked questions about our GDPR compliance below.
- How will you verify to customers that you are in compliance with the new regulation?
We will provide customers with a copy of our DPA and will be happy to answer any questions they may have about our GDPR compliance.
- How is sensitive information stored, and do you have processes in place in the event of a data breach?
Sensitive information is stored securely, with limited access. We have a team of dedicated security professionals who monitor our systems 24/7. In the event of a data breach, we will notify affected customers as soon as possible.
- For how long do you store customer data?
We store customer data only for 12 months. We will delete customer data upon request or after 12 months.
- Where is your customer data physically stored?
Customer data is not physically stored. It is virtually stored in our servers in in the EU.
- Which of your teams will have access to customer personal information?
Only authorized employees will have access to customer personal information. This includes employees who need access to this information to provide our services or to meet legal requirements.
- How does your organization handle instances when customers request their data be removed from your system(s)?
We will delete customer data upon request. We will also delete customer data after 12 months (but just the analytical data, not the profiles, user information etc. That can be deleted also at anytime by the user.
- What processing operations are done by the Data Processor (Overtracking)?
Overtracking processes customer data only for the purposes of providing our services. This includes storing and managing customer data, sending emails, and providing customer support.
Additional Security Measures
We take additional security measures to protect your data, including:
- Authentication by email
- HTTPS encryption
- Secure credential storage
- API security
- 2FA (Two Factor Authentication)
We are committed to protecting the privacy of our users’ data. We have implemented a number of security measures to protect your data and we will continue to monitor our systems and make improvements as needed.