π¬π§ GDPR & compliance
GDPR and OpenCRM.
How OpenCRM supports GDPR compliance, what it means for your data, and the responsibilities we take seriously as a UK-based CRM provider β with an overview of your rights, the steps we take to protect your data, and guidance to help you meet your own requirements.
Guides & resources
Your GDPR toolkit
Everything in one place β official guidance, step-by-step help within OpenCRM, and our own thinking on getting compliant.
General GDPR guides
How to⦠in OpenCRM
Our thoughts on GDPR
Available on request
- Data Retention Workbook
- Right to be Forgotten Workbook
- Advice around your Customer Portal
- Recording data processing consent
Just ask our team and we’ll send these over.
Your rights & our role
What GDPR guarantees β and what we do about it
GDPR guarantees you
Rights over data about you or your company
- Knowing where the data came from
- The ability to correct inaccurate data
- Being kept informed about how your data is processed β and able to object
- Requesting a copy of the data
- Explicitly opting in to marketing communications
- Asking for your data to be removed
That means we, as data controller
Take clear, documented responsibility
- Tell you what data we hold and where we got it β and when we collect more
- Keep documented data-processing policies and share them with you
- Give you the ability to check and update your data
- Hold data-retention policies so we don’t keep data longer than needed
- Obtain your consent before sending marketing
- Work with you, within the law, to erase data you don’t think we should have
Protecting your data
Prevention first β and a clear plan if the worst happens
Our responsibility
How we protect your data
- Follow best industry and development guidelines for all systems and servers
- Carry out 24/7 monitoring on our data centres
- Keep all servers and PCs up to date and patched
- Maintain documented data-processing and retention policies
- Train our people on best practice and our own procedures β and review regularly
Cyber Essentials PlusIndependently certified
More on our commitment to security β
If something goes wrong
Our data-breach commitment
- Be transparent
- Notify you within 72 hours
- Tell you exactly which data was affected
- Notify and work with law enforcement and forensic investigators as needed
- Carry out a full internal investigation
- Make every necessary improvement to protect against it happening again
We’re here if you need us
Get in touch with our team to chat about how you can use OpenCRM to meet your GDPR requirements.