Appspace is committed to the privacy and security of our customers and their data. These have been our most important design goals since our earliest days. With the new regulation known as GDPR (shorthand for the EU’s directive entitled General Data Protection Regulation), we want to let you know how it applies to Appspace services and how we work to ensure compliance with this directive.
Appspace is committed to GDPR compliance across all of our services. In fact, we go above and beyond the stated requirements for a service provider of our type.
In the context of GDPR, Appspace is a Data Controller. Data Controllers are responsible for implementing appropriate technical and organizational measures to ensure and demonstrate that any data processing is performed in compliance with the GDPR. A Controllers’ obligations include:
- Ensuring lawful, fair, and transparent processing of all data
- Minimize, as much as possible, the amount of data we store and the processing we perform on that data
- Ensure a subjects’ data accuracy and rights concerning their data
GDPR focuses on the management and security of personal data. In this regard, Appspace requests and stores a minimal amount of personal data. The personal data that we store is always encrypted both at rest and in flight, and we save it only with a small number of GDPR-compliant data processors.
Further, we do not, in any case, use personal information for any purpose other than user identification, authentication, authorization, and to log actions for audit by an Account Owner. Finally, we never share this data with any partners or other parties not directly related to the delivery of our services to our customers.
Our Data Privacy Statement clearly details our policies, practices, and processes.
See other security information at https://www.appspace.com/trust.