Last Updated: June 2018

What is GDPR?

The General Data Protection Regulation (GDPR) is effective May 25, 2018, and is one of the most important changes to data privacy in decades. The new regulations expand controls European Union (EU) Data Subjects (the people who use your app, website or other service) have over their personal data and holds companies much more accountable for managing consumer personal data.

GDPR expands the regulatory environment for international business by enhancing obligations on organizations handling data. Even if you do not have a presence in the European Union, collecting personal data or behavioral information from EU Data Subjects makes your company subject to the requirements of the GDPR. No matter what size your company is, your organization could face heavy fines for failing to comply.

How tapCLIQ Helps?

tapCLIQ takes user's privacy very seriously. GDPR aligns with what has always been tapCLIQ's product strategy: Keeping user experience and privacy at it's core. Our technology and customer success team guides our customers to engage users at the right moment and with the right engagement - being thoughtful about what is a good experience for the consumer. This includes being transparent about how personal data is being used and respecting their privacy.

When the tapCLIQ SDK is deployed within a digital property, tapCLIQ acts as the Data Processor and our customer is the Data Controller of consumer data.

tapCLIQ is committed to consumer privacy and:

  • Our customer success team will work directly with our customers (the Data Controller) to assist them in meeting their GDPR obligations.
  • Will ensure our products continue to support GDPR compliance and strong privacy controls.
  • Can assist the Data Controller in demonstrating compliance to all of its stakeholders.
  • Helps the Data Controller respond to requests that data subject makes regarding their rights to be informed, access data, rectify data, and erasure.

In particular, tapCLIQ has taken steps to allow clients to leverage the tapCLIQ platform website and SDK to carry out more nuanced actions related to personal data.

With tapCLIQ, it's now possible to:

  • Export an individual customer profile and its related personal data via a form request / API, allowing our clients to comply with GDPR's Right of Access and Right to Data Portability.
  • Halt all processing of a given customer's data via form based request and we will delete that individual's data via API, supporting compliance with GDPR's Right to Erasure.
  • Edit information contained in a given user's customer profile via email request, in accordance with GDPR's Right to Rectification.
  • Mark individual profiles as opted-out via web form (opt-out) or SDK , in order to comply with GDPR's Right to object.

Rights related to automated decision making and profiling

tapCLIQ does not perform any automated profiling or decision making actions with legal or equivalent ramifications for end users.