Here are a few of the highlights regarding our policy changes:
- More clarity and data transparency: We simplified language around the information we collect from our customers and how it is used, along with explanations of your choices for controlling personal information in the Calendly platform.
- GDPR: The GDPR gives EU citizens more control, choices and rights over how their data is used and puts forth guidelines for the collection and processing of data for businesses. We’ve revised customer agreements to include a data processing addendum that reflects the new GDPR standards and states how we hold ourselves to these standards as a business.
Consequently, here are a few changes we have made to our website and practices:
- Email Marketing Opt-in: Users who register for an account will now have to opt-in in order to receive marketing / promotional emails and our newsletters (off by default).
- Internal Procedures: We have enhanced our current internal policies and procedures, such as security and incident management, with new ones to better align ourselves with the requirements of GDPR. Another new procedure we introduced is working only with partners that are GDPR-compliant, where applicable.
- Data Protection Officer: The GDPR states that it’s necessary to assign a Data Protection Officer (DPO) to make sure we are compliant with the regulations and handle complaints. We have assigned a Data Protection Officer to oversee compliance and the enforcement of all new policies.