EZO complies with several privacy laws, including the General Data Protection Regulation (GDPR). This blog will take you through what this means and shed light on how we help you comply with GDPR and other privacy laws when you use AssetSonar.
Where EZO acts as a Data Controller, our Privacy Policy explains how we process personal data. The most recent version of our Privacy Policy can be reviewed here.
What is Personal Data?
Information related to identified or identifiable natural persons such as name, email address, photos, and online identifiers such as IP Address.
Do Privacy Laws, such as GDPR, apply to you as our Customer?
Privacy laws, such as GDPR, may apply in case: (i) you are located in a country or region where data privacy laws exist i.e., EU and UK; or (ii) in case you process personal data of citizens or residents of a region where data privacy laws exist i.e., EU or UK.
Understanding Roles under GDPR
- Data Controller: Determines the purpose and means of processing personal data.
- Data Processor: Processing personal data on behalf of another entity.
- Data Subjects: Individuals whose data is processed.
The following section explains how we help AssetSonar customers comply with GDPR or other privacy laws:
Helping you comply with Data Subject Requests in your role as a Data Controller
When you process the personal data of other individuals, AssetSonar allows you to control and manage how you process their data. AssetSonar is designed to ensure that you can act upon data subject requests yourself. Account owners and administrators authorized by the account owners can take the following actions:
- View, update, delete, correct, or remove the profile information, including profile information of members that are authorized in AssetSonar.
- Export data, including personal data related to the members or vendors that are created in AssetSonar. We allow the extraction of such information in a readable format. To do that you can either generate a report or extract a CSV via members and access module. To learn more, please see our blog on generating custom reports in AssetSonar.
- Garner consent of various users that you authorize to use AssetSonar, such as by sending an email confirmation alert to a user to his or her email address whenever a new member or vendor is created in AssetSonar. This is of course customisable depending on your intended settings. To learn more, please see our blog on Types of Alerts in AssetSonar.
- When you take any of the above actions, any data, including personal data, stored in our back-ups is automatically deleted or updated in the course of the next bi-annual backup deletion cycle.
Identify the Data Protection Officer in your organization using our Compliance Tool
AssetSonar allows you to maintain the records of your Data Protection Officer in the compliance tool section. To provide visibility to members using AssetSonar, you can also add a Data Protection Officer role in the Members and Access Section.
Important Note: To enable a Data Protection Officer to take action on data protection requests, please assign them the role of at least an administrator.
Data Hosting Locations
Your data is typically hosted on our AWS US Data Center. However, EZO also has the capability to host your data at a specific data center located in the EU, UK, Canada, Australia, Japan, Sweden, and many others. When you choose a data hosting location, in addition to live data, all backup data is stored within the jurisdiction that you choose. To learn more about your specific data hosting options please contact us at support@ezo.io.
Do we sell Personal Data?
EZO is not in the business of selling Personal Data, nor have we done so in the past 12 months.
Our security measures?
EZO is SOC II, Type 2, and ISO 27001 Certified. To request a copy of our certifications please email us support@ezo.io. For more information on our security measures please see our Security Page.
Customers can request to sign our Standard Data Processing Agreement
If privacy laws apply to you as our customer, to ensure compliance, you can request to sign our standard data processing agreement at legal@ezo.io.
Join the AssetSonar Community
AssetSonar stands as a leading IT Asset Management solution, committed to protecting your digital rights. Join us today for a free 15-day trial and experience the power of GDPR-compliant data management.
