UserIQ is committed to helping our customers find success in every moment. We know that protecting your privacy plays a critical role in creating those successful moments in your product. To that end, we want to share our updated privacy policy, which provides greater clarity and detail about the information we collect, how we use it, and how we comply with GDPR.  

What is GDPR?

On May 25th, 2018, a new European Union (EU) data protection law, the General Data Protection Regulation (GDPR), takes effect. The GDPR gives individuals in the EU more control over how their data is used and places certain obligations on businesses that process information of those individuals. Our updated privacy policy reflects our compliance with the GDPR requirements.

What is Privacy Shield?

UserIQ will also participate in the Privacy Shield program. The EU-U.S. Privacy Shield Framework was designed by the U.S. Department of Commerce and the European Commission to provide companies on both sides of the Atlantic with a mechanism to comply with EU data protection requirements when transferring personal data from the European Union to the United States.

The Privacy Shield Framework provides a set of robust and enforceable protections for the personal data of EU individuals. The Framework provides transparency regarding how participating companies use personal data, strong U.S. government oversight, and increased cooperation with EU data protection authorities (DPAs). The Privacy Shield Framework offers EU individuals access to multiple avenues to address any concerns regarding participants’ compliance with the Framework, including free dispute resolution. The Framework also makes it easier for EU individuals to understand and exercise their rights.

What has UserIQ done to achieve compliance?

We’ve always been committed to keeping our customer’s data safe and secure. While GDPR only holds us accountable for how we process EU users’ personal data, we’ve taken this opportunity to review our practices and ensure that our high standards for data privacy extend to all of our users, regardless of location.

These standards begin with our philosophy that the data collected by UserIQ on your behalf should be yours. That means we have always supported ‘right-to-forget’ requests in which we will delete data at the user, account, or site level upon request. We will soon release public API calls to support data removal requests to make it as easy as possible to support our customers in their pursuit of GDPR readiness.

Finally, we want to make it very clear that we have never sold data to third parties and we never will.

How do I request a DPA from UserIQ?

Customers who need to enter into a Data Protection Addendum (DPA) as part of their own GDPR readiness can send a request to success@useriq.com.