GDPR

  • Resolved ceesvanderwel

    (@ceesvanderwel)


    6 years, 11 months ago

    Hello Helpdesk,

    I’m a happy user of the plugin Customer Reviews for WooCommerce. But because the plugin handles personal data, I would like to know if your plugin complies to the GDPR regulation and if a DPA (Data processing agreement) is available for me as a user?

    [ Signature deleted ]

    • This topic was modified 6 years, 11 months ago by Jan Dembowski.
Viewing 8 replies - 1 through 8 (of 8 total)
  • Plugin Author cusrev

    (@ivole)

    Thanks for using our plugin!

    We will update our terms and conditions soon to be compliant with GDPR requirements. There is still a little bit of time before GDPR. I will provide a link to the updated terms and conditions in this thread.

    Hi, can you please provide the link to the updated terms and conditions. Thanks

    Plugin Author cusrev

    (@ivole)

    We haven’t yet completed update of the terms and conditions. However, I can already provide some high level details.

    Generally, Customer Reviews is a “data processor” because we provide a service for sending review invitation emails on behalf of merchants. Whilst a data processor has fewer direct obligations under legislation, we must still protect the personal data involved as we will still be liable to the data controller/merchant.

    However, there is also an option to publish verified copies of reviews on cusrev.com website. When a copy of a review is published on cusrev.com, we are considered to be a “data controller”, meaning we have the primary responsibility to ensure that the GDPR is complied with.

    We have registered with the Information Commissioner’s Office in the UK and are waiting for assignment of a registration number.

    I will share links to the updated terms and conditions and privacy policy as soon as we complete their update.

    Hi, thanks for the update. I’d like to jump in on this if I may:
    1. Just to clarify, your GDPR compliance for you as data processors is not yet finalised? Or does that just refer to you as data controllers?
    2. Will you have your own processor agreement, or shall I send you mine? If I send you mine, which email should I send this too please?
    3. Which country are you based in, and if it’s the US, are you covered by the EU-US Privacy Shield?
    Thanks so much!

    Plugin Author cusrev

    (@ivole)

    You’re welcome!

    1. We should be able to update and extend our privacy policy, data protection policy, and terms by the GDPR deadline.

    2. We will have our own agreements.

    3. UK

    Plugin Author cusrev

    (@ivole)

    Here is a link to the updated privacy policy: https://www.cusrev.com/privacy-policy. We will publish updated terms & conditions and a data protection policy over the next couple of days.

    Plugin Author cusrev

    (@ivole)

    Here is the updated data protection information: https://www.cusrev.com/data-protection.

    Plugin Author cusrev

    (@ivole)

    Updated terms and conditions: https://www.cusrev.com/terms.html

Viewing 8 replies - 1 through 8 (of 8 total)
  • The topic ‘GDPR’ is closed to new replies.

Tags