What is GDPR?
The General Data Protection Regulation (GDPR) is a law that is being enforced as of 25th May 2018 across the European Union (EU). It's a data privacy law aimed at protecting EU residents against the misuse of personal data that they share on the web.
Previously, websites could request user consent by displaying long, hard-to-understand terms and conditions. It is now mandatory to request consent in an intelligible and easily accessible form.
Outline of General Data Protection Regulation (GDPR)
- Expanded Rights - The user has the right to access, modify, or delete their data. They also have the right to receive a copy of their personal data and transmit it to other data controllers.
- Data Breach Notification - GDPR makes it mandatory for organizations to report any breach of user data to the appropriate authorities.
- Consent - GDPR has strengthened the laws about getting consent from the user (who is also known as a data subject). The user must be presented with clear and concise information, including the nature and purpose of the proposed data processing, whenever their personal information is collected.
- Privacy by Design and Privacy by Default - Though privacy by design and privacy by default are old concepts, under GDPR they're now legal requirements. Privacy by design requires companies to start thinking about how to protect their users' personal information early in the design and development process of their products and services. Privacy by default means that the default settings in any product, process or service should give users the highest level of protection.
How has Zoho SalesIQ prepared for GDPR?
With GDPR in effect, you'll need more control over data sharing and processing. We have worked to incorporate these requirements within our application and will continue to ensure that our customers around the globe have the best protection for their user data.
Zoho SalesIQ, as a prospecting and engagement platform, starts tracking as soon as the visitor lands on a website with Zoho SalesIQ's code embedded in it. We have taken GDPR to heart in our development by including Privacy by Design in our product. It means you needn't worry about setting up all of your features to comply with GDPR, because they comply by default. The features that have undergone changes for GDPR compliance are listed below.
Visitors on the site will be notified that they are being tracked. The visitor can choose to allow or disallow tracking and continue browsing the website either way. The operator can customize the consent collection settings.
The visitor's consent must be received in order to store and process the information provided in the chat.
To ensure user privacy and data security, password protection is enabled by default for all attachments shared using SalesIQ. The operator can customize the password protection settings.
One of Zoho SalesIQ's features uses a third-party service, Google Translate, to help associates translate text while chatting with the visitor. As a best practice for GDPR, the visitor is informed when the associate is using Google Translate.
This option is available when emails are sent from the chat window or when chat is initiated through an email. The visitor will be asked to specifically opt in to continue, which helps ensure that the visitor has made an informed decision to opt in and the associate is interacting with a real consenting person and not a bot.
IP Address Masking (Upcoming)
The operator can choose to mask visitors' IP addresses to protect their privacy and avoid unnecessarily collecting personally identifiable information.
Credit Card Masking (Upcoming)
If credit card details are shared by the visitor on chat, they will be masked — not displayed on the screen — to ensure privacy. The operator can enable credit card masking.
Disclaimer: The information presented herein should not be taken as legal advice. We recommend that you seek legal advise on what you need to do to comply with the requirements of GDPR.