What does GDPR mean for OpenCRM?

On 25 May 2018, the General Data Protection Regulation (GDPR) comes into effect. This will have far reaching implications for any business when it comes to how they collect, manage, process, and retain personal data.

And we’re no different.

Rights guarantee

When it comes to data about an individual or company, GDPR guarantees you a number of rights, including…

Data controller

That means we as a data controller…

  • Knowing where the data came from
  • The ability to correct inaccurate data
  • Being kept informed about how your data is processed (and able to object to this processing)
  • Requesting a copy of the data
  • Having to explicitly opt in to receiving marketing communications
  • Asking for your data to be removed
  • Tell you what data we hold on you and where we got it (and let you know when we are collecting more)
  • Have documented data processing policies (and give you information about these)
  • Provide you with the ability to check and update your data
  • Have data retention policies in place so we don’t keep data longer than we need it
  • Obtain your consent for sending you any marketing communication
  • Work with you (and within our legal requirements) to erase any data you don’t think we should have
Protect data

We also have a responsibility to protect your data to the best of our ability. To ensure this, we…

Data breach

But what if something goes wrong? Well, if we were to ever have a data breach, we would…

  • Follow best industry and development guidelines for all systems and servers
  • Carry out 24/7 monitoring on our data centres
  • Ensure all servers and PCs are kept up to date and patched
  • Have documented data processing and retention policies
  • Train our personnel on best practices and our own procedures
  • Regularly review this these procedures and policies
  • Notify you within 72 hours
  • Provide you with information regarding the data that was affected
  • Notify and work with law enforcement and forensic investigations (as necessary)
  • Carry out a full internal investigation
  • Make any and all necessary improvements to protect against such a breach in future


We have some more detailed information about the steps we take to ensure the security of your data over on this page. There is also, of course, a page dedicated to all the legal necessities, including our terms of use and privacy policy.

Alternatively, if you’d like to have a chat with our team, you can give us a call on 01748 473000.