You might be bored of hearing about those four letters, so we'll try and keep this short and sweet.
How the changes affect your product experience
Removal of all IP Processing - We will no longer be using or storing the IP addresses of your website visitors. We're moving to a cookie based system. The cookies will remain on your browser for 365 days. You will need to update your website's cookies and privacy policies accordingly.
This means all leads are anonymised via a shortened IP and cookie generated user ID, giving you the ability to block any spammers and be safe in the knowledge neither party has this unique information stored.
Because no one can be identified/traced back to their IP, the way you block spammers has also changed.
The Right to be Forgotten - We are providing you with the mechanisms to not only service your data requests in CSV format, but also to erase any individual's data from all databases at the click of a button.
This feature is in progress.
Phone Number and Email Lead Data Storing - Naturally, to be able to provide our service we need to be able to process the telephone numbers and email lead data captured by or supplied by you. Once we connect you to the lead, we do not need this data for any other purposes than reporting and troubleshooting. Moving forward you will have the option to instantly delete from our database all phone numbers and email lead data which we process on your behalf. Combined with the measures in point 1, ResponseiQ will retain zero PII (personally identifiable information) on your behalf.
If you require data removal please email email@example.com.
GDPR Consent Mechanisms - A major component of GDPR is the requirement that to process any EU members PII data you must gain "freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her". We are building a fully customisable consent mechanism that will auto display and require consent from all EU web visitors, should they request or schedule a callback with you. Here's a preview of how it will look. We will provide a metric so you can review possible drop-off rates between requesting the call and consenting to GDPR. These measures will allow you to tailor your message and allow us to monitor changes and adjust our strategy as these stats manifest themselves. For our customers who use our Instant Lead Response feature it will be your responsibility to ensure you have consent to process any PII data. You may notice small changes to our demo and trial signup area to reflect changes we have made to meet this requirement.
DPA - Data Processing Agreement If you require a Data Processing Agreement please reply to this message or email firstname.lastname@example.org. Our DPO (Data Protection Officer) is Scott and he is happy to have a call with anyone who would like to discuss these points. Book a 15 minute call, here.