The European General Data Protection Regulation (GDPR) is a set of standards for businesses to protect European Union (EU) resident’s data. Sketchboard has been closely following the development of the GDPR and has taken all necessary steps to comply.
The General Data Protection Regulation (GDPR), is a privacy law in European Union level which has been in effect since May 25th, 2018. The aim of the GDPR is to regulate how organizations and individuals can collect, use, transfer and remove personal data. The regulation gives EU residents control over their personal data. It also aims to make regulations easier to operate for international businesses by introducing EU level regulations. You can find the full text of GDPR here.
As a European company based in Finland, Sketchboard complies with the obligations set forth by the GDPR.
Sketchboard has always been very diligent about data security activities to ensure a high standard for its users. With the introduction of GDPR, we have taken the required steps to ensure our compliance with the European Union’s regulations.
We develop our policies and processes based on the principles introduced by Article 5 of GDPR:
Lawfulness, fairness and transparency
We explain our legal basis and data collection purpose in our privacy policy. You can contact info@sketchboard.io if you have any questions about the privacy policy. In order to ensure transparency, we also implemented the “Your Information” section on your account page that you can access the data you have on Sketchboard.
Purpose limitation
We use the collected data only for the lawful purpose that we explained in our privacy policy. You can also find the names and specific purposes of our data processors on the privacy policy. We will notify you if there is any update on our policies.
Minimization
We only collect the data necessary for our lawful purpose on the privacy policy. In order to minimize the data collection, when you delete the data on Sketchboard, data will be permanently deleted from our backups after 30 days.
Accuracy
We take the necessary actions to make sure that your data is kept updated, according to its purpose. In order to ensure data accuracy, we handle bounced emails carefully, and always keep your account data up-to-date.
Storage limitation
We keep your personal data only for the duration needed to fulfill its primary purpose. When you delete any data from your Sketchboard account, it will be permanently deleted from our backups after 30 days.
We also provide the “delete account” option that we delete all your personal data permanently -which cannot be undone. Find more information about account deletion on our privacy policy.
Integrity and Confidentiality
We manage your data very carefully and work with the highly trusted third-party service providers to ensure that your data is secure. We use industry-leading data centers that are based in the European Union (EU) area. Find more information about Sketchboard’s data security approach on the security page.
Accountability
As a data controller, we recognize our responsibility to demonstrate our compliance with all GDPR principles mentioned above to our users. You can find all the relevant information about how we handle your data on our privacy policy. Please also contact info@sketchboard.io for any questions or requests.
Sketchboard has different GDPR roles depending on the nature of the data that you can find below:
| Our Role | Kind of data |
|---|---|
| Controller | Sketchboard users' personal data that is provided directly to us (name, email address etc.) |
| Processor | Any personal data which is stored in our users' boards on Sketchboard. As Sketchboard users are the owner of the data on their boards, they are the data controller in this context. |
