GDPR and email
- GDPR
- /
- Sat Jan 16 10:29:00 CET 2021
The GDPR (General Data Protection Regulation) governs the collection, storage and management of personal data, for both companies and individuals. The GDPR also specifically applies to email services.
Personal data includes not only information provided during the registration process (first name, surname, address, telephone number, email address, etc.), but also refers to all information stored on the cloud. This would include data such as email content, email recipients, email attachments, address book, calendar, etc.
Servermx, is a company established in the EU, and as such, is subject to comply with GDPR. Accordingly, personal data managed (received, stored, or transferred) by servermx and its sub-contractors must comply with GDPR. Servermx stores data on servers located inside and outside the EU. When outside the EU, the country has to offer an adequate level of data protection. The EU regulates if a non-EU country has a suitable level of data protection (https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en).
GDPR defines two significant roles: the data controller and the data processor.
For example, the data controller is a customer of servermx, and the data processor is servermx, itself. The data processors would be those who process the data on behalf of the data controllers. The data controller should be aware of the procedure employed by the data processor.
Servermx has released a list of documents regarding GDPR (privacy policy, data processing agreement, terms and conditions) which describe the procedures of data processing.
The proper data procedure has always been applied from the beginning of Servermx's email hosting, and Servermx makes every effort to adhere to the GDPR regulation.