The GDPR goes into effect from May 25, 2018, and businesses located in the European Union that handle private information of EU-based people are virtually universally obliged to follow rules and regulations as of that day. The General Data Protection Regulation (GDPR) brings the framework for ensuring the confidentiality of personal data in the EU up to date and harmonized, and it introduces new responsibilities for businesses as well as new rights for people.
Several of our clients do business in more than one jurisdiction across the globe. LeadGarner has also implemented the GDPR standards throughout its whole network and is committed to providing global support for them in order to provide an uniform customer experience. As a result, we think that the use of consistent rules and program logic will significantly improve our clients' capacity to comply with the GDPR's obligations. When LeadGarner handles personal information on its clients' behalf, it ensures compliance with the General Data Protection Regulation (GDPR) which is documented in a Data Processing Agreement (DPA).
The most common misconception regarding the GDPR is that permission would be the sole legal basis for processing private data around European Union. This is simply not true. Despite the fact that permission is one of the legal base for processing, it is not really the sole option.
According to the legislation, LeadGarner's legitimate interest in offering its services to its users constitutes the legal basis for processing.
Whenever we transmit private data beyond of the European Union or the European Economic Area, we do it with legal procedures that provide an appropriate degree of protection and are compliant with the GDPR.
LeadGarner gathers its data in the United States and employs SCC compliances in conjunction with supplement transmission technologies to make sure compliance to the European Union's standard of private data security as well as guidelines on the European Union's surveillance measures, among other things.