Why authorization holds are invaluable for any rental business
If you’re running a rental business, chances are you’re already putting security deposits to good use. They’re an excellent way...
Under the GDPR, EU citizens have certain rights concerning their own personal data. Booqable offers you tools and methods that allow you to easily access, change, remove and delete that data at your customer’s request.
Let’s take a closer look at how Booqable helps you honor these rights.
When a customer requests removal from the system, we recommend a procedure like this:
View the customer you want to forget,
Obscure/garble the customer name,
Delete email addresses, address information and other fields like this.
This process effectively erases the customer’s personal data from Booqable. It’s a manual procedure, but it’s likely that this is going to be an infrequent request.
Note that these steps don’t change information on existing documents you may need to keep for legal obligations (like invoices).
Your customers may contact you to request access to information you keep about them. You’re able to do a quick search for your customer in the Orders, Customers and Documents sections of Booqable and export relevant information to help you construct your response to your customer.
Much like the right of access, you can run a search on your customers, export the data and hand it over to them however you choose.
We have made improvements to Booqable to assure that you as a controller can feel completely assured that you meet your obligations using Booqable under GDPR.
That said, because the GDPR is a brand new and very comprehensive regulation, no vendor can at this point legitimately declare that they are GDPR compliant as there doesn’t seem to be a certification method by which assures that you are compliant. If your company serves EU citizens, you’ll need to do your best at making a good-faith effort to be compliant, keeping a close eye on, and adapting to its developments.
Absolutely! Understanding what specific rights data subjects have to their personal data, and how to comply with them as a Data Controller is key to your ability to meet with GDPR. Booqable will be acting as a Data Processor for your customer’s data and provides means to help you comply with all of your data subject’s rights.
Most likely so. Whether you’re based in the EU or not, it is hard to be sure that you’ll never process an EU citizen’s data.
Booqable’s production data is stored within state of the art data centers located in the US. If you serve customers in the EU or are located in the EU, our Data Processing Agreement (DPA) is available to sign upon request.
The information in this post is provided for informational purposes only and should not be treated as legal advice. To determine precisely how the GDPR may or may not apply to you, you should work closely with legal and other professional counsel.