As an international service provider, Greenprint Digital Solutions, LLC maintains a GDPR compliant Data Protection policy and has chosen to comply with the standards required for organizations operating within the European Union. The best and most comprehensive source of information describing when and how user data is collected, which personal data is collected, and how that data may be shared is our Privacy Policy.
Ways in which we comply with GDPR requirements:
Lawful, fair and transparent processing - we only use user data for purposes related to their experience on our platform, and we provide clear and transparent explanations of how user data is accessed and utilized.
Limitation of purpose, data and storage - no personal data, other than what is necessary, be requested, and user data is deleted once the legitimate purpose for which it was collected is fulfilled.
Data subject rights - users have the right to ask how their data will be used.
Consent - clear and explicit consent must be asked from each user. Once collected, this consent must be documented, and all users are allowed to withdraw his consent at any moment.
Personal data breaches - Greenprint Digital maintains a Personal Data Breach Register to document any cases of data breaches, and users will be informed of any data breaches within 72 hours of identifying the breach.
Privacy by Design - Greenprint Digital utilizes technical mechanisms to protect personal data in the design of our systems and processes, by default.
Data Protection Impact Assessment - Greenprint Digital conducts a Data Protection Impact Assessment when initiating a new significant changes or products, relating to processing of personal data.
Data transfers - Greenprint Digital ensures that personal data is protected and GDPR requirements respected, even if processing is being done by a third party.
Timely personal data deletion - if a user requests to have their account and all personally identifying data deleted from our platform, the Greenprint Digital follows the GDPR "right to be forgotten" and "storage limitation" principles, in that we notify the user of the action planned (within 30 days, usually within 24 hours) to ensure that the deletion request is honored without undue delay.
Awareness and training - Greenprint Digital creates awareness among its employees about key GDPR requirements.
If you have questions or concerns about this GDPR Policy, please contact us at info@greenprintdigitalsolutions.com.