The General Data Protection Regulation is an update to existing Data Privacy laws, and aims to harmonise and strengthen the Data Privacy rights of EU citizens in how their data is controlled and processed.

GDPR sets out regulations for the security and privacy controls required when handling Personally Identifiable Data (PII). Obatics Software is committed to Data Protection with cloud services accredited ISO27001:2013.

We only collect and retain data about individuals or organisations with our customers consent, for the services we offer, and for billing purposes. Our customers who utilise those services may also collect and retain data (PII) for their own purposes and should refer to the “Matrix of Responsibility” document (which is published separately), for information on their own GDPR responsibilities.

From May 25th, 2018, the European Union's General Data Protection Regulation will come into force.

Opt-in is a process that proves the person you are emailing has agreed to your communications. You must keep a record of this agreement to prove the recipient opted-in.

Opt-Out gives the recipient the option to have all of their personal details removed from your records. It must be easy for the person you are contacting to Opt-Out.

You can be asked for a copy of all documents with contain personal details on an individual. You can also be asked to remove all personal details (which includes name, phone, address, ip address, etc) in all records on an individual.

Technically, yes, provided the contact details you have are not personal - you can email info@obatics.ie as the address is generic, but you will need consent from the recipient for personal email addresses, for example joe.jones@obatics.ie

After 25th of May, 2018, you risk a fine of up to €20 million, or 4% of the worldwide annual revenue of the prior financial year, whichever is higher

We collect personal information solely for the purpose of providing the services we offer and for billing and accounting purposes. We do not share your personal o information or the data you have stored in Obatics with third parties.

As part of our service, we backup our customers’ cloud data every evening and keep each backup for a period of 30 days, shortly after which, the backup is permanently deleted. If you would like to keep a copy of the daily backup for your own disaster recovery procedure, we can provide this service and information on how to retrieve the file.

Both the live and backup data are stored on serves within in Ireland. The Obatics program has tools built in to help you comply with the GDPR regulations, but it is your responsibility to ensure the your own data is compliant.

GDPR requires us to minimise the data we keep unless it’s required for the provision of a service or for existing legal requirements, so we keep your data only for as long as it’s needed for the original purpose we collected it. If it’s not needed we get rid of it!

Yes. You own your data so if you would like to view your data or remove it and bring it with you then we will work with you to make that happen.

Under GDPR you can:

• Request access to your personal data
• Request correction of the personal data we hold about you
• Request the erasure of your personal data (known as Right To Be Forgotten)
• Object to a processing of your personal data
• Request restriction of processing your personal data
• Request the transfer of our personal data
• Withdraw consent

Just contact any of our staff or send an email to customerservice@obatics.ie and we will help you with your request.

For more information refer to:
General Data Protection Regulation
GDPR Portal