Zenkit 和歐盟《一般資料保護規範》

Zenkit 致力於保護使用者的個人資料。 我們只會收集和儲存因應提供服務所需的必要資訊,且會先行取得使用者的同意。 我們在隱私權、安全性和資料保護的方法都和歐盟《一般資料保護規範》的目標一致,且積極採取措施以確保我們完全符合法規。

About the GDPR

GDPR stands for the General Data Protection Regulation. It is the European Union’s (EU’s) in 2016 released regulation that safeguards the personal data of individuals in the EU, as well as the export of personal data abroad.

The GDPR gives EU residents greater control over how any organization worldwide collects, processes, stores, and shares their personal data. Personal data is broadly defined in the regulations, but in general it can be thought of as any data that can be used to personally identify an individual. It applies to any organization that processes EU citizens’ personal data, regardless of the organization’s location.

The regulation encompasses the steps to be taken in all areas of protecting an individual’s privacy, including setting up security mechanisms, compliance, and repercussions. Failure to comply with the GDPR incurs a heavy fine for the non-compliant organization.

To learn more about the GDPR and how you may be affected, please feel free to read the following articles from our blog:

Zenkit and the GDPR
The GDPR explained
How to ensure GDPR compliance
Your GDPR compliance checklist

Our Stance on Privacy and the GDPR

Here at Zenkit, we strongly support data privacy legislation because we believe that strong privacy practices are good for our customers, and thus good for us. We are fully committed to the protection of our users’ data.

Our servers are located in Germany, which means that we need to meet not only the GDPR but also the European Data Protection Directives, as well as the German Federal Data Protection Act. This has set us up in good stead to meet GDPR compliance.

We will do our best to support your GDPR compliance efforts by providing information about the data that Zenkit collects, transmits, and stores for your account. That being said, we are unable to offer legal advice pertaining to how you or your organization achieve compliance.

Please read our app privacy policy and web privacy policy to learn more.

What We’re Doing to Comply

Just like any other software company with users and customers based inside the EU, we implemented a compliance strategy leading up to May 25th, 2018. Our data privacy practices are now in compliance with the GDPR.

We understand that our customers have GDPR requirements that are directly affected by their use of Zenkit and to that effect we worked hard with everyone on our team to ensure that, to the extent Zenkit directly collects the personal data of EU residents, it is GDPR compliant. Here are some of the steps we’ve taken:

  • Committed to upholding the security and privacy measures required by the GDPR.
  • Committed to appropriate data transfer mechanisms when transferring data outside to the EU.
  • Ensured that any subprocessors or third-party services to which we transfer our users’ data uphold the security and privacy measures required by the GDPR.
  • Ensured that all of our staff are appropriately educated about the proper handling of personal data.
  • Ensured that staff who have access to, and process, our user’s personal data are bound to maintain the confidentiality and security of that data.
  • Committed to notifying the appropriate regulators in the case of personal data breaches, and ensuring our users are informed of such breaches promptly.
  • Created awareness within the company regarding the Privacy by Default and Privacy by Design principles for ongoing development.
  • Hired a Data Protection Officer to oversee our data practices and offer advice.

GDPR FAQ

Does Zenkit Process Personal Data?

Data you enter into Zenkit when using the platform is stored and processed exclusively in the EU and never transferred outside of it. However, some optional services occasionally require personal data to be transferred outside of the EU, such as your email address. Additionally, some employees or contractors may need to access data stored in the EU from a non-EU country for technical or support reasons. We commit to ensuring that such transfers are compliant with all applicable data transfer laws, including the GDPR.

Where Does Zenkit Send User Data?

What User Data Does Zenkit Collect?

Can I Exercise My Privacy Rights?

How Can I Remove All of My Data from Zenkit?

As a Zenkit user, you have the right to be forgotten. You can permanently remove all of your data from Zenkit by deleting your account. Learn more about how to delete your account in our documentation.

All of your collections will immediately be deleted upon confirmation. Where total deletion is not possible (for example, in the case of comments on existing collections), personal data will be anonymized.

Data that we are required by law to keep for a certain period of time, such as invoices or offers, will be properly disposed of once the retention period is over.

Can I Access My Data?

Can I Transfer My Data to Another Provider?

Can I Sign a DPA with Zenkit?