How does Flipsnack comply with GDPR regulations?

Discover how Flipsnack ensures compliance with the EU General Data Protection Regulation (GDPR), safeguarding your data and upholding your privacy rights.

At Flipsnack, we are fully committed to complying with the EU General Data Protection Regulation (GDPR), ensuring transparency in how we handle customer data, including digital publications and interactions. Our approach is centered on fulfilling our obligations under the regulation while maintaining the highest standards of data privacy and security.

Understanding GDPR: The GDPR, effective since May 25, 2018, is a comprehensive data protection law that strengthens the rights of individuals within the EU concerning their personal data. It provides a unified legal framework for processing and monitoring personal data across the EU, impacting businesses worldwide.

How Flipsnack ensures GDPR compliance:

  • Third-Party assessments: Flipsnack conducts regular external third-party audits, following industry best practices and guidance. Our compliance certifications, including ISO 27001, 2000-1, 9001, CAIQ, and the Flipsnack Assessment Security Report, are available in our legal bookshelf here. Additionally, our legal and compliance department performs data protection impact assessments as necessary, ensuring that all data processing activities meet established privacy and security standards.

  • Risk assessments: Flipsnack's Third-Party Information Security Policy and Procedure cover all aspects of information security within supplier relationships, agreements, the ICT supply chain, and cloud services. Risk assessments are conducted whenever changes occur in supplier relationships or when required by the risk profile.

  • GDPR rights at Flipsnack: Under the GDPR, individuals have specific rights concerning their personal data, including the rights to access, rectify, erase, restrict processing, and data portability, as well as the right to object to data processing and automated decision-making. Flipsnack is committed to upholding these rights, providing clear and accessible means for users to exercise them. Users can request access to their data, make corrections, delete their data, or transfer it to another service provider easily. We also respect user preferences regarding data usage, allowing them to opt out of certain processing activities.

  • Data Processing Agreement (DPA): Flipsnack's Data Processing Addendum (DPA) is part of our Terms of Service and incorporates the latest Standard Contractual Clauses (SCCs) issued by the European Commission. This DPA outlines our privacy commitments, helping our customers meet their GDPR obligations. You can access our DPA here.

  • Dedicated Data Protection Officer: Flipsnack has appointed a dedicated Data Protection Officer (DPO) to oversee our data protection strategies and ensure ongoing compliance with GDPR. For any privacy-related queries or concerns, our DPO can be reached at dpo@flipsnack.com.

  • International transfer of data: Personal data, including data collected in the European Economic Area (EEA), Switzerland, or the United Kingdom (UK), may be stored and processed by Flipsnack or its affiliates in the United States. Flipsnack has implemented the European Commission’s Standard Contractual Clauses to ensure that personal data transferred outside of the EEA meets adequacy requirements.

  • EU-US and Swiss-US Data Privacy Framework: Flipsnack LLC participates in the EU-U.S Data Privacy Framework, the UK extension to the EU-U.S. Data Privacy Framework, and the Swiss-U.S Data Privacy Framework. We adhere to these frameworks regarding the collection, use, sharing, and retention of personal data from the European Union, the UK, or Switzerland. In case of disputes, we follow a structured resolution process that may involve independent dispute resolution mechanisms.

Flipsnack is deeply committed to protecting user privacy and security, fully adhering to GDPR standards. Our ongoing compliance efforts reflect our dedication to building trust and delivering a secure platform for all users. For further inquiries about privacy, please contact us at: dpo@flipsnack.com.