LoyalGenie and GDPR

What is GDPR?

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. It also addresses the transfer of personal data outside the EU and EEA areas.

GDPR was implemented on May 25, 2018, and it aims to give individuals control over their data and simplify the regulatory environment for international business by unifying the regulation within the EU. To review the entire GDPR regulation, click here.

LoyalGenie and GDPR

The General Data Protection Regulation (GDPR) represents a comprehensive shift in the handling of data for businesses operating on a global scale.

At LoyalGenie, we are committed to ensuring the protection and management of data in accordance with the EU General Data Protection Regulation (GDPR). This compliance outlines our ongoing commitment to privacy and data protection.

Data Protection Principles

We adhere to the following principles for processing personal data:

1. Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and transparently.
2. Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes.
3. Data Minimization: We only process personal data that is adequate, relevant, and limited to what is necessary.
4. Accuracy: We keep personal data accurate and up to date.
5. Storage Limitation: We retain personal data for no longer than is necessary.
6. Integrity and Confidentiality: We ensure personal data is secure.

Individual Rights

Under GDPR, individuals have the following rights:

• Right to be informed
• Right of access
• Right to rectification
• Right to erasure
• Right to restrict processing
• Right to data portability
• Right to object
• Rights concerning automated decision-making and profiling

Data Breaches

In the event of a data breach, we have in place procedures to ensure effective and prompt response to protect the integrity of our data. We will notify affected individuals and any applicable regulator where we are legally required to do so.

Data Transfers

Any data transfers outside the European Economic Area (EEA) are done in full compliance with the GDPR data protection principles.

Third-Party Processors

We use a number of third-party processors to process personal data. These processors are carefully chosen and all of them comply with the GDPR.

Updates to our GDPR Compliance Document

This document may be updated to reflect new legal requirements and changes to our data protection practices.

How can you remove your data from LoyalGenie?

Under GDPR, individuals (referred to as "Data Subjects") have the "right to erasure", which allows them to request the deletion of their data at any time. Since LoyalGenie does not gather or handle your existing customer data, it is your responsibility to ensure that this data is deleted from your eCommerce platform upon such requests.

For WooCommerce store owners, removing the customer from your eCommerce platform will also remove their data from LoyalGenie.

If a customer contacts us directly, we will direct them to you to exercise this right.

Contact Information

For any questions regarding our GDPR compliance, please reach out to us via our contact page.