Data Retention Policy As processors of its customers' data and to protect the privacy of information it stores, BitSimplify holds data no longer than is needed to provide its services. Events received over 1 year ago are automatically deleted on an ongoing basis from all projects. User data is retained indefinitely. Customers are given the ability to delete profiles. This policy includes projects that were deleted or reset through the Project Settings -- deleting a project through the Project Settings triggers a soft deletion, and the data in the deleted or reset project will remain stored in BitSimplify according to event and user data retention policies. For more questions about setting custom data retention windows, contact our support team.
What is the GDPR?
The General Data Protection Regulation ("GDPR") is a new comprehensive data protection law in the European Union ("EU") that updates existing laws to strengthen the protection of personal data in light of rapid technological developments, increased globalization, and more complex international flows of personal data. It replaces the patchwork of national data protection laws currently in place with a single set of rules, directly enforceable in each EU member state. The GDPR went into effect on May 25, 2018
What does the GDPR say?
The GDPR stresses that transfers of personal data from the EEA to third countries outside the EEA require special consideration. According to the GDPR, international transfers may take place only when there is an adequate level of protection to the fundamental right of individuals to data protection. To maintain high standard of privacy protection and to ensure that the level of protection afforded to individuals is not weakened when their data is transferred outside the EEA, the GDPR sets a number of conditions that should be met by companies willing to transfer personal data outside the EEA. If the recipient country is not subject to an adequacy decision by the European Commission, the GDPR requires companies to ensure certain safeguards for the transferred personal data. Articles 46 and 49 of the GDPR list mechanisms that constitute such adequate safeguards, namely:
- Legally binding instruments approved by public authorities and bodies;
- Binding corporate rules drafted in accordance with the GDPR requirements;
- Standard data protection clauses approved by the European Commission or an EU Member State’s supervisory body;
- An approved code of conduct;
- An approved certification mechanism;
- Contractual clauses between controllers and processors approved by supervisory authorities; or
- Data subject’s consent.
How does GDPR impact BitSimplify and its customers?
The GDPR regulates the "processing" of personal data of any EU resident (who is referred to as a "data subject"). "Processing" includes the collection, storage, transfer, or use, of personal data. This means that any company that processes the personal data of any data subject, regardless of where the company is based, is subject to the rules of the GDPR. Additionally, the GDPR defines personal data very broadly, and includes name, email, demographic information, real-time location, online activity, and health information, to name a few. This means that both BitSimplify and our customers sending us data will need to comply with the requirements of the GDPR.
Is BitSimplify collecting data?
As between BitSimplify and our customers, BitSimplify is the "data processor" and the customer is the "data controller", as such terms are defined underthe GDPR. The data controller collects data from our data subjects (i.e., a customer's end users) and says how and why personal data is processed. The data processor receives the data from the data controller and acts upon instruction from the data controller.
For more information on personal data visit europa.eu
How do we ensure compliance?
To ensure that the processing of personal data is carried out in accordance to the highest data protection standards, we use the most frequent mechanism to legitimize international data transfers, namely, the standard contractual clauses (controller to processor) approved by the European Commission (the SCC). The data processing agreement that our clients conclude with us (the DPA) is based on the SCC and a copy of the SCC is provided as an Exhibit 1 to the DPA. Our DPA is available at https://BitSimplify.com/ Moreover, we comply with all data protection principles listed in the DPA, such as:
- Processing personal data for limited specific purposes that are compatible with the purpose of transferring;
- Processing only a proportional amount of personal data;
- Processing personal data only in accordance with controller’s instructions;
- Providing details about our processing activities;
- Providing information to individuals concerned;
- Implementing appropriate security measures;
- Allowing individuals to exercise their rights; and
- Implementing appropriate supervision and enforcement mechanisms.
If you have any questions about our data protection practices or would like to receive further details regarding international data transfers, please contact us by email at [email protected]
Links to Third Party Sites
THE LINKS IN THIS WEBSITE WILL LET YOU LEAVE BITSIMPLIFY'S SITE. THE LINKED SITES ARE NOT UNDER THE CONTROL OF BITSIMPLIFY AND BITSIMPLIFY IS NOT RESPONSIBLE FOR THE CONTENTS OF ANY LINKED SITE OR ANY LINK CONTAINED IN A LINKED SITE, OR ANY CHANGES OR UPDATES TO SUCH SITES. BITSIMPLIFY IS NOT RESPONSIBLE FOR WEBCASTING OR ANY OTHER FORM OF TRANSMISSION RECEIVED FROM ANY LINKED SITE. BITSIMPLIFY IS PROVIDING THESE LINKS TO YOU ONLY AS A CONVENIENCE, AND THE INCLUSION OF ANY LINK DOES NOT IMPLY ENDORSEMENT BY BITSIMPLIFY OF THE SITE.
Unsolicited Idea Submission Policy
BITSIMPLIFY OR ANY OF ITS EMPLOYEES DO NOT ACCEPT OR CONSIDER UNSOLICITED IDEAS, INCLUDING IDEAS FOR NEW ADVERTISING CAMPAIGNS, NEW PROMOTIONS, NEW PRODUCTS OR TECHNOLOGIES, PROCESSES, MATERIALS, MARKETING PLANS OR NEW PRODUCT NAMES. PLEASE DO NOT SEND ANY ORIGINAL CREATIVE ARTWORK, SAMPLES, DEMOS, OR OTHER WORKS. THE SOLE PURPOSE OF THIS POLICY IS TO AVOID POTENTIAL MISUNDERSTANDINGS OR DISPUTES WHEN BITSIMPLIFY'S PRODUCTS OR MARKETING STRATEGIES MIGHT SEEM SIMILAR TO IDEAS SUBMITTED TO BITSIMPLIFY. SO, PLEASE DO NOT SEND YOUR UNSOLICITED IDEAS TO BITSIMPLIFY OR ANYONE AT BITSIMPLIFY. IF, DESPITE OUR REQUEST THAT YOU NOT SEND US YOUR IDEAS AND MATERIALS, YOU STILL SEND THEM, PLEASE UNDERSTAND THAT BITSIMPLIFY MAKES NO ASSURANCES THAT YOUR IDEAS AND MATERIALS WILL BE TREATED AS CONFIDENTIAL OR PROPRIETARY.