Our Commitment to You and the Protection of Your Data

We’re committed to helping HelloCrowd customers and users understand, and where applicable, comply with the General Data Protection Regulation (GDPR). The GDPR is the most comprehensive EU data privacy law in decades, and went into effect on May 25, 2018.

Besides strengthening and standardizing user data privacy across the EU nations, it introduces new or additional obligations on all organizations that handle EU citizens’ personal data, regardless of where the organizations are located. On this page, we explain how we help our customers comply with the GDPR.

GDPR Compliance

The GDPR’s updated requirements are significant and our global team has adapted HelloCrowd's product offerings, operations and contractual commitments to help customers comply with the regulation. Measures we have implemented include:

  • Investments in our security infrastructure
  • Updates to relevant contractual terms
  • Support for international data transfers by applying for our Privacy Shield self-certifications, and by executing Standard Contractual Clauses through our updated Data Processing Addendum
  • Offering data portability and data management tools including:
    -    Import and export tools. Businesses and organizations may access, import, and export their Customer Data using HelloCrowd's tools.
    -    Profile deletion tool. Help customers respond to user requests to delete personal information, such as names and email addresses, from a HelloCrowd account.
    -    Workspace settings center. See your workspace’s plan and settings, or contact an admin who controls the workspace.

We also monitor the guidance around GDPR compliance from privacy-related regulatory bodies, and update our product features and contractual commitments accordingly. We’ll provide you with regular updates so that you’re always current.

Our Security Infrastructure and Certifications

Protecting our customers’ information and their users’ privacy is extremely important to us. HelloCrowd makes use of Technology Partners who have received internationally recognized security certifications for ISO 27001 (information security management system) and ISO 27018 (for protecting personal data in the cloud).

HelloCrowd has invested heavily in building robust practices that can handle a variety of issues — everything from threat detection to building new tools. In accordance with GDPR requirements around security incident notifications, HelloCrowd will continue to meet its obligations and offer contractual assurances.

If you’d like to learn more about HelloCrowd's security policies and procedures, please see our security page. It provides detailed information on how we approach security.

International Data Transfers: Privacy Shield and Contractual Terms

To comply with E.U. data protection laws around international data transfer mechanisms, we self-certify under the E.U.-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield. These frameworks were developed to establish a way for companies to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States.

In addition, we offer European Union Model Clauses, also known as Standard Contractual Clauses, to meet adequacy and security requirements for our customers who operate in the E.U.

Updates

Fulfilling our privacy and data security commitments is important to us. So we’re glad to comply and help you comply with the GDPR. If you have any questions about your rights under the GDPR as a User or how HelloCrowd can help you with compliance as a Customer, we hope you’ll reach out to us at privacy@hellocrowd.net 

Resources

  • Guide to HelloCrowd's Data Exports
  • HelloCrowd’s Privacy Policy
  • HelloCrowd’s User Terms of Service
  • HelloCrowd's Data Processing Addendum
  • HelloCrowd’s Security Page
  • E.U.-U.S. and Swiss-U.S. Privacy Shield
  • Full text of the GDPR

Our Security Infrastructure

Protecting our customers’ information and their users’ privacy is extremely important to us. As a cloud-based company entrusted with some of our customers’ most valuable data, we’ve set high standards for security. 

HelloCrowd has invested heavily in building a robust security protocols that can handle a variety of issues — everything from threat detection to building new tools. In accordance with GDPR requirements around security incident notifications, HelloCrowd will continue to meet its obligations and offer contractual assurances.

International Data Transfers: Privacy Shield and Contractual Terms

To comply with E.U. data protection laws around international data transfer mechanisms, we self-certify under the E.U.-U.S. Privacy Shield and the Swiss-U.S. Privacy Shield. These frameworks were developed to establish a way for companies to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States.

In addition, we offer European Union Model Clauses, also known as Standard Contractual Clauses, to meet adequacy and security requirements for our customers who operate in the E.U.

Data Portability Solutions and Data Management Tools

Customers have requested tools to help them comply with the GDPR. And we’re happy to say that we’ve built those tools.

Compliance-related tools include the following:

  • Import and export tools. Businesses and organizations may access, import, and export all their Customer Data.
  • Profile deletion tool. Help customers respond to user requests to delete personal information, such as names and email addresses, from a HelloCrowd account.
  • Workspace settings center. See your team’s plan and settings, or contact an admin who controls the app or event.

Stay Updated

Fulfilling our privacy and data security commitments is important to us. So we’re glad to help you prepare for all the changes the GDPR brings. This page will be revised to reflect GDPR-related information as it becomes available. If you have any questions about how HelloCrowd can help you with compliance, we hope you’ll reach out to us.

Resources

Did this answer your question?