On 25 May 2018, the new General Data Protection Regulation (GDPR) will begin to apply within the EU. Focusing on increased privacy protection, it regulates processing and handling of personal data. 

For more information about how we handle your personal information, please check your terms and conditions: SWEDISH  ENGLISH 

What is the GDPR:

The GDPR (General Data Protection Regulation) is a new EU regulation that ensures the protection of the rights and freedom of natural persons in relation to the processing of their personal data, which is a fundamental right in the EU. More specifically, the GDPR regulates the processing (i.e. collection, storing, transfer, deletion etc.) of personal data in all companies operating within the EU.  

Ensuring compliance: 

At Flowbird, we have ensured data protection for many years. As a PCI DSS certified (Payment Card Industry Data Security Standard) company, Flowbird already follows a set of strict controls for keeping our customer data safe and secure.  These controls, which are well supported by a regulatory framework, ensures not only compliance with PCI DSS, but also with a vast majority of the requirements in GDPR. Needless to say, protecting and securing data has been in the genes of Flowbird for many years. 

 
Flowbird has during the past months reviewed all services and processes in respect to the compliance of GDPR and has applied the changes needed. We have amongst many other things implemented: 

• a more transparent communication on the data privacy to data subjects, customers and suppliers.
• Privacy by design: we ensure not only effective data minimization for all data processed on Customer's behalf, but also on the retention of Personal Data.
• Data Protection Impact assessment: Flowbird has audited its services to identify potential risks to the rights and freedoms of its Customer's End-Users, adopting comprehensive internal procedures and implementing the necessary updates;
• a Data Processor Officer function to further strengthen our compliance program
• A comprehensive GDPR training program, aimed at all employees and other workers, to ensure they understand the basics of data protection, to create awareness about the nature and importance of personal data, to educate them to recognize and respond to data subject access requests and learn how to report data breaches.

 
You can ensure that Flowbird, as your supplier for many years, will continue to protect and secure your data, as we have for many years.  

We will continuously publish relevant information regarding GDPR on these web pages.