What is GDPR?

The General Data Protection Regulation (GDPR) is a new set of EU regulations that aims primarily to give full control over personal data to citizens and residents, in the European Union. Simply put, EU residents will now have a greater say over what, how, why, where, and when their personal data is used, processed, or disposed. 

Who does it concern?

The GDPR covers all citizens and residents within the EU, and every organization within the EU must comply.

So how does Zoho Payments help you in your compliance journey?

  •  

    Processing of personal data

    With provisions such as role-based access and audit log, Zoho Payments makes sure that handling of customer data meet the security standards.

  •  

    Right to restriction of processing

    Zoho Payments makes sure that the end user has every right to revoke/cancel any action before it could be performed and at any point of time.

  •  

    Right to erasure

    Zoho Payments provides the users with provisions to cancel their paid license at any time without any restriction. Customers can delete Payment Method & Billing address at any time after the cancellation of subscription.

  •  

    Security of processing

    Zoho Payments is highly secure and reliable with TLS 1.2 and RSA encryption. All personally identifiable information (PII), or sensitive personal information (SPI) are stored in encrypted form.

  •  

    Right to data portability

    Zoho Payments allows every customer to download their invoices. Partners can export their customers and commissions data.

  •  

    Our team is here to help

    Should you have any questions on security, privacy or data, our support team is here to help, so please don’t hesitate to get in touch with payments@zohocorp.com

Disclaimer: Compliance with the GDPR requirements is possible only with the combination of people, process, and technology. Zoho Payments has made the best efforts to provide solutions that you can use to comply with the law. The information presented here should not be taken as legal advice. We always recommend that you approach legal counsel to advise on the best ways to ensure GDPR compliance.