Guest user Created: May 10, 2018 Last commented: May 10, 2018

Being compliant with the GDPR

I'm working on making sure my website is compliant with the GDPR. I manage it for a company based in the US that sells products/services to the EU, although not on a frequent basis. I'm having trouble understanding the part about transferring EU users data to other countries. Specifically, I'm wondering how to handle the fact that we have a contact form on our website and the form submissions are stored on my web host, who is based in the US, but may also have multiple servers around the world (CDN). I've been searching the web, but haven't found an answer for this scenario yet. Any thoughts?

0 0

Assign topic to the user

Select user

Expert

Andrei Hanganu May 10, 2018

Answer:

From the description you provided it looks like the data is directly collected in the US so basically they are not transferred from a EU entity to a US entity. The only thing you need to do is to mention in your Privacy Notice that the data processed in the US and may be stored in the US or other locations around the world.

To find out more about privacy notices check out our webinar “Privacy Notices Under the EU GDPR” https://advisera.com/eugdpracademy/webinar/privacy-notices-under-the-eu-gdpr-free-webinar-on-demand/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

May 10, 2018

Expert Advice Community