General Data Protection Regulation: How We Keep Your Data Safe

GDPR

The "General Data Protection Regulation" (GDPR), effectively takes effect on 25 May 2018. The GDPR will replace the previous European data protection directive and national legislation and aims to improve security and security Protection of personal data in the EU.
Estaform.org welcomes the new General Data Protection Regulation. The success of our website is based on the trust of our customers, employees and other stakeholders in our ability to deliver world-class quality. This also includes the security of compliance with data protection regulations.
Not only does Estaform.org have an obligation to comply with national and international privacy regulations, but it also acts by applying the same standards, processes and procedures in agreement with our partner sites in a coherent and comprehensive manner. In doing so, we ensure the transparency, predictability and consistency that our stakeholders expect of us.

How we keep your data safe

Your data is stored on a secure server in a remote location, which is protected by the latest in physical and digital security measures. We work with our service provider on a basis of mutual trust and have the greatest confidence in their ability to keep your data safe.

No processing of personal customer data

We do not process personal data on behalf of the customer and have no access to personal data in our partners’ systems (personal customer data). In addition, Estaform.org is unable to monitor the processing of personal customer information in our partners’ data systems.

Anonymisation of your data

We anonymise your marketing data through the process of Data Pseudonymisation with regards to the following systems:
  • Google Analytics (including demographics, behavioural and remarketing data)
  • Google Tag Manager
  • Google Search Console (formerly known as Google Webmaster Tools)
  • Youtube (a division of Google Inc.)
  • Facebook (analytics and pixel)
  • CrazyEgg
  • Mouseflow
  • Zendesk
  • Fresh Chat
The operating company of Google products and YouTube is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
Further information and the applicable data protection provisions of Google may be retrieved under  the link
To ensure the anonymisation through Google Analytics, the controller uses the application "_gat. _anonymizeIp".
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States.
If a person lives outside of the United States or Canada, the controller is the Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The data protection guideline published by Facebook, which is available at the link, provides information about the collection, processing and use of personal data by Facebook. The operating company of CrazyEgg is Crazy Egg, Inc. 16220 E. Ridgeview Lane, La Mirada, CA 90638, United States. Further information and the applicable data protection provisions of CrazyEgg may be retrieved under the link.
The operating company of Zendesk is Zendesk, Inc., 1019 Market St, San Francisco, CA 94103, United States. Further information and the applicable data protection provisions of Zendesk may be retrieved under the link.
The operating company of Fresh Chat is Freshworks Inc. 1250 Bayhill Drive, Suite 315, San Bruno, CA 94066, United States. Further information and the applicable data protection provisions of Fresh Chat may be retrieved under the link.
The operating company of Mouseflow is Mouseflow, ApS Flaesketorvet 68, 1711 Copenhagen, Denmark. Further information and the applicable data protection provisions of Mouseflow may be retrieved under the link.

GDPR implementation

Since we have already implemented a high level of security and data protection measures in our, we will have implemented the regulations of the General Data Protection Regulation by 25 May 2018 holistically. This includes all required policies, processes and procedures.

Storage duration

We will store and retain your personal marketing information in order to constantly improve our services unless you request otherwise.

Your rights

Should you choose to revoke your consent to the storage of personal data, or should your data become inaccurate, we will delete, correct or block your data in accordance with the statutory provisions. We will be happy to answer any questions you may have regarding the collection, processing or use of your personal data, as well as its correction, blocking or deletion. Please contact us at [email protected].