GDPR Compliance
Introduction
At SMBcrm, we are committed to ensuring the protection and confidentiality of your personal data. As a reseller of GoHighLevel, we adhere to the highest standards of data privacy and security. This page outlines our compliance with the General Data Protection Regulation (GDPR) and our commitment to safeguarding your personal data.
What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It aims to protect the personal data of individuals within the European Union (EU) and gives them greater control over how their data is collected, used, and shared.
Our Commitment to GDPR
SMBcrm is fully committed to complying with GDPR requirements. We have implemented the necessary measures to ensure that our data processing activities meet the standards set by GDPR.
Data Protection Principles
We adhere to the following principles when processing personal data:
- Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.
- Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it further in ways incompatible with those purposes.
- Data Minimization: We ensure that personal data is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
- Accuracy: We take all reasonable steps to ensure that personal data is accurate and kept up to date.
- Storage Limitation: We retain personal data only for as long as necessary for the purposes for which it was Collected.
- Integrity and Confidentiality: We process personal data securely to protect against unauthorized or unlawful processing, accidental loss, destruction, or damage.
Data Subject Rights
Under GDPR, individuals have the following rights regarding their personal data:
- Right to Access: You have the right to request access to your personal data and obtain information about how we process it.
- Right to Rectification: You have the right to request the correction of inaccurate or incomplete personal data.
- Right to Erasure: You have the right to request the deletion of your personal data under certain conditions.
- Right to Restrict Processing: You have the right to request the restriction of processing of your personal data under certain conditions.
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and have it transferred to another data controller.
- Right to Object: You have the right to object to the processing of your personal data under certain conditions.
Data Processing Agreement (DPA)
We have a Data Processing Agreement (DPA) in place to ensure that personal data is processed in compliance with GDPR requirements. Our DPA outlines the roles and responsibilities of SMBcrm and our customers regarding the processing of personal data.
Data Security Measures
We have implemented robust security measures to protect personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:
- Encryption of data in transit and at rest
- Regular security audits and assessments
- Access controls and authentication mechanisms
- Employee training on data protection and security
International Data Transfers
We ensure that any transfer of personal data outside the European Economic Area (EEA) is conducted in compliance with GDPR requirements. This includes using standard contractual clauses approved by the European Commission or other appropriate safeguards.
Contact Us
If you have any questions or concerns about our GDPR compliance or how we handle your personal data, please contact us at:
SMBcrm Data Protection Officer
Email: compliance@smbcrm.com
Address: 2162 E. Williams Field Rd, Suite 111, Gilbert, Arizona 85295
We are committed to addressing any inquiries or concerns promptly and transparently.