Privacy Frequently Asked Questions
1. What is GDPR, and what is SOC Prime doing to comply?
GDPR stands for the European data protection law known as the General Data Protection Regulation (GDPR), which is effective as of May 25th, 2018. GDPR replaces national privacy and security laws that previously existed within the EU with a single, comprehensive EU-wide law that governs the use, sharing, transfer, and processing of any personal data that originates from the EU. GDPR takes a comprehensive view of what constitutes personal identification information (PII). It is any information that directly or indirectly identifies a natural person. As part of our commitment to GDPR compliance, we have updated our Privacy Policy. Our policy is to respect all laws that apply to our business, including GDPR.
2. What's changing with SOC Prime's Privacy Policy?
SOC Prime has updated its Privacy Policy according to the new, more robust standards of privacy rights introduced by GDPR.
Our new policy is more user-friendly and addresses new data regulations. The most significant changes in the new policy are explained below:
- To make the policy easier to understand, we use clear, plain language.
- More control over your information. We make it easy for you to control the information you provide to us. Our policy explains how you can make choices about your information and the measures we’ve put in place to keep your information secure.
- We will hold any processors that handle personal data, including our partners, to the same data management, security, and privacy practices and standards to which we hold ourselves.
SOC Prime will assist our customers, insofar as possible, to respond to data subject requests under the GDPR.
3. Does SOC Prime process personal data?
Yes. We process personal data to provide our products and services and for other purposes, as our Privacy Policy outlines.
4. Can I opt out of having my data collected or shared?
You have certain choices available to you regarding your information. You can exercise some of the options by logging in on our website and using settings available within the applicable Service or your account. You may need to contact your DPO to assist with your requests first. SOC Prime's Privacy Policy summarizes those choices, how to exercise them, and any relevant limitations.
5. How does SOC Prime secure my data?
We have implemented organizational and technical safeguards to secure our users' data in compliance with GDPR requirements. Our users' personal data is pseudonymized when stored and further encrypted if it is being transferred.
6. Does SOC Prime use processors to further process customer data?
SOC Prime uses a range of third-party Processors to assist it in providing the Services.
A list of our Processors
| Entity Name | Processing Activities | Corporate Location |
|---|---|---|
| Amazon.com, Inc. | Cloud Service Provider | Washington, USA |
| Atlassian | Help desk request tracker tool | USA, Australia |
| Calendly LLC | Automated scheduling tool | Atlanta, USA |
| Credly, Inc. (Parent organization: Pearson) | Solution for issuing digital badges (for the SOC Prime Threat Bounty Program) | New York, USA |
| DocuSign, Inc. | Sales, proposals, and electronic agreements with electronic signatures Management | California, USA |
| Google Inc. | Cloud Service Provider | California, USA |
| Hotjar Ltd. | Analysis and feedback tool that reveals the online behavior and feedback of a website’s visitors | Malta, Europe |
| Intercom, Inc. | Service for customer support and customer messaging services via in-app | San Francisco, USA; Ireland |
| The Rocket Science Group, LLC (Doing Business As MailChimp) | A marketing automation service provided by The Rocket Science Group. | Atlanta, USA |
| Pipedrive | Сustomer relationship management (CRM) tool | New York, USA; Tallinn, Estonia |
| Stripe, Inc. | Payment processing software | San Francisco, USA |
| Typeform SL | Customer surveys | Barcelona, Spain |
SOC Prime shall provide an up-to-date list of the Processors it has appointed upon written request from our user or customer.
7. Who can I contact with questions regarding GDPR?
To provide scalable service to our users and customers, we have included GDPR compliance information in our updated Privacy Policy. However, we also understand there are circumstances where it may help you to connect with us directly. For more information, contact our Data Protection Officer here: dpo@socprime.com.
8. Updates
As our business grows, the Processors we use may also change. We will periodically update this page to reflect additions and deletions on our list of Processors. This page serves as our primary mechanism for notifying customers of any changes to the Processor listing. Please check back regularly for updates.
If you have questions or concerns about our Processors, we'd be happy to help. Contact us at legal@socprime.com.
For more information, please see our Privacy Policy.