GDPR

GDPR and OpenCRM


This page explains how OpenCRM supports GDPR compliance, what it means for your data, and the
responsibilities we take seriously as a UK-based CRM provider.

It’s for our customers, prospective customers, and anyone who wants to understand how personal data is handled within OpenCRM.

You’ll find an overview of your rights under GDPR, the steps we take to protect your data, and guidance on how
OpenCRM can help you meet your own compliance requirements.

General GDPR guides

How to…in OpenCRM

Our thoughts on GDPR

Resources Available on Request

  • Data Retention Workbook
  • Right to be Forgotten Workbook
  • Advice around your Customer Portal
  • Recording data processing consent
UK GDPR and OpenCRM

When it comes to data about an individual or company, GDPR guarantees you a number of rights, including…

  • Knowing where the data came from
  • The ability to correct inaccurate data
  • Being kept informed about how your data is processed (and able to object to this processing)
  • Requesting a copy of the data
  • Having to explicitly opt in to receiving marketing communications
  • Asking for your data to be removed
Data-controller

That means we as a data controller…

  • Tell you what data we hold on you and where we got it (and let you know when we are collecting more)
  • Have documented data processing policies (and give you information about these)
  • Provide you with the ability to check and update your data
  • Have data retention policies in place so we don’t keep data longer than we need it
  • Obtain your consent for sending you any marketing communication
  • Work with you (and within our legal requirements) to erase any data you don’t think we should have

We also have a GDPR responsibility to protect your data to the best of our ability. To ensure this, we…

  • Follow best industry and development guidelines for all systems and servers
  • Carry out 24/7 monitoring on our data centres
  • Ensure all servers and PCs are kept up to date and patched
  • Have documented data processing and retention policies
  • Train our personnel on best practices and our own procedures
  • Regularly review these procedures and policies
  • Find out more about our commitment to security on our Security overview page
  • We have also achieved the Cyber Essentials Plus certification

But what if something goes wrong? Well, if we were to ever have a data breach, we would…

  • Be transparent
  • Notify you within 72 hours
  • Provide you with information regarding the data that was affected
  • Notify and work with law enforcement and forensic investigations (as necessary)
  • Carry out a full internal investigation
  • Make any and all necessary improvements to protect against such a breach in future

We’re here if you need us

Get in touch with our team to chat about how you can use Open CRM to meet your GDPR requirements.

request a call

Built for how you actually work
Not how software thinks you should

We design CRM solutions tailored to your processes, giving control, clarity, and long-term scalability with seamless integration and flexibility.

1 Bailey Court
Colburn Business Park
Richmond
North Yorkshire
DL9 4QL

t:.+44 (0)1748 473000
e. sales@opencrm.co.uk

Contact Us

© OpenCRM

Privacy Policy