TAA Privacy Statement and GDPR Compliance
The privacy of customer data is very important to us. This privacy statement explains what data we collect and how we use that data.
What customer data do we collect and/or retain?
TAA Tools collects a very limited amount of customer data, primarily for customer support and customer communications. This data is given to us voluntarily by customers when a license is purchased, or an issue is reported. The data is not personal data that could be used to identify an individual, but rather company contact information such as primary contact name, email address, and mailing address.
How is access and use of customer data controlled?
Access to customer data is limited to customer support personnel for customer billing and support questions, and to developers for issue resolution.
How is TAA Tools establishing GPDR compliance?
GPDR is a regulation established by the EU to protect personal data that is collected by companies. It became effective on May 25, 2018.
GPDR requires a clear privacy statement that outlines how customer data is used, stored and processed by a company and any third-party services that are used.
TAA Tools uses several third-party tools in order to operate our business efficiently. When a company uses other business software, GPDR regulation defines 2 roles: the Data Controller and a Data Processor. TAA Tools is the Data Controller, or holder of the information you have sent us. The tools we use to run aspects of our business are Data Processors of that data.
Our company uses three services as Data Processors.
Microsoft Office 365
Microsoft Outlook is used to process emails and store issue information sent in from customers. The only customer data stored is contact name and email address. Microsoft is establishing GPDR compliance through privacy by design, and transparent operations that safeguard your organization’s data. You can read Microsofts privacy statement here.
Atlassian JIRA
JIRA is used for issue tracking. Only customer name and email address are stored. Atlassian is committed to GPDR compliance, as noted here.
MailChimp
MailChimp is used for customer newsletters and communications. Customer email addresses are stored in MailChimp. MailChimp is committed to achieving GPDR compliance.
In Conclusion
TAA Tools realizes the importance of customer data and takes all appropriate measures to protect it. The data we store is limited solely to data necessary for business operation. Every precaution is taken to ensure best security practices are used by TAA, as well as third-party applications that are used for customer support and communication.