GDPR, the new reform coming into force for data protection.
Do you wonder what this new reform is in practical terms? Would you like to know when Mailinblack will be compliant? Then you are in the right place!
What is GDPR and how do we prepare for it?
The General Data Protection Regulation (GDPR) is a new European directive that will come into effect on 25 May 2018 and aims to strengthen the protection of personal data. It aims to provide accountability for all stakeholders involved in processing personal data and imposes different obligations on them in terms of transparency, security and data protection, when these personal data concern European residents (whether they are established in the EU or not).
To ensure compliance, an audit phase is required for each company. This allows you to check your infrastructure and internal processes, especially where personal data is processed. Companies can also call on legal advisors to facilitate their efforts.
What is Mailinblack’s position regarding the GDPR?
Make every effort to be in compliance by 25 May 2018! As our audit comes to an end, some slight reorganisation will likely be required to comply with this new regulation and be in compliance on the date announced 🙂 . We take very seriously the protection of our customers’ data, which is vital for us. We therefore welcome this new European regulation as an opportunity to strengthen our commitment and as a real advancement in data protection across Europe. It is also an additional way to continue building trusting relationships with our customers. Here are some key facts about Mailinblack:
- Data hosting
For our customers who choose to delegate the protection of their mailboxes via our SaaS hosting services, their data is hosted in France, and more specifically in our data centres in Marseille, Lyon and Roubaix. When an email is received on our servers, it passes through our data centres before being finally quarantined or delivered to the email server if it isn’t virus-infected. All of this filter processing, from reception to delivery of the message, is done in France. Rest assured, your data processed by our services never leave Europe!
- Data storage
If the customer’s email server doesn’t respond, Mailinblack keeps the emails in transit for 5 days and the emails in quarantine for 30 days. After these holding periods, they are automatically deleted. Backups of the functional data are kept up to 30 days after the end of the contract. As for the event logs, they can be kept up to 1 year according to the legal obligations.
For more info on the GDPR, don’t hesitate to take a look here. 😉