GDPR And You

At simplebooklet, we care deeply about protecting the personal data of our users. We only collect and store information that is necessary to offer our service, and we do this with the consent of our users. Our approach towards privacy, security, and data protection aligns with the goals of the European Union's GDPR regulation, and we've taken measures to ensure that we are fully compliant.

About the GDPR

GDPR stands for the General Data Protection Regulation. It is the European Union's (EU's) new regulation that safeguards the personal data of individuals in the EU, as well as the export of personal data abroad.

The GDPR gives EU residents greater control over how any organization worldwide collects, processes, stores, and shares their personal data. Personal data is broadly defined in the regulations, but in general it can be thought of as any data that can be used to personally identify an individual. It applies to any organization that processes EU citizens' personal data, regardless of the organization's location.

The regulation encompasses the steps to be taken in all areas of protecting an individual's privacy, including setting up security mechanisms, compliance, and repercussions. Failure to comply with the GDPR incurs a heavy fine for the non-compliant organization.

Our stance on Privacy and the GDPR

Here at simplebooklet, we strongly support data privacy legislation because we believe that strong privacy practices are good for our customers, and thus good for us. We are fully committed to the protection of our users' data.

We will do our best to support your GDPR compliance efforts by providing information about the data that simplebooklet collects, transmits, and stores for your account. That being said, we are unable to offer legal advice pertaining to how you or your organization achieve compliance.

Please read our privacy policy to learn more.

What we're doing to comply

Just like any other software company with users and customers based inside the EU, we are implementing a compliance strategy leading up to May 25th, 2018. We are committed to ensuring that our data privacy practices are in compliance with the GDPR by the deadline.

We understand that our customers have GDPR requirements that are directly affected by their use of simplebooklet and to that effect we are working hard with everyone on our team to ensure that, to the extent simplebooklet directly collects the personal data of EU residents, it is GDPR compliant. Here are some of the steps we've taken:

GDPR FAQ

Does Simplebooklet process personal data?

Yes, we process personal data to provide the simplebooklet service, and for other purposes specified and described in our Privacy Policy and Terms of Service.

Providing the simplebooklet service requires some data to be transferred to the US. Additionally, some employees or contractors may need to access data from a non-EU country for technical or support reasons. We commit to ensuring that such transfers are compliant with all applicable data transfer laws, including the GDPR.

If you would like more information about our privacy practices, please feel free to contact us at support@simplebooklet.com.

Where does simplebooklet send user data?

The simplebooklet service is used by customers around the world. We follow common practices used by SaaS softwares to provide that service. For example, simplebooklet data is stored in liquidweb servers in Phoenix, Arizona. (learn about their privacy practices here. We send periodic email updates and tips via our chat service using intercom (learn about their privacy practices here), whose servers are based in the United States.

We have taken steps to ensure that each of our service providers are GDPR compliant, and have a Data Processing Agreement (DPA) with each of them.

Can I exercise my privacy rights?

Yes, you can find an option to exercise your rights in your simplebooklet profile under 'Your privacy rights'. Please read the following to learn how your requests to exercise your rights are handled.

How can I remove all of my data from Simplebooklet?

As a simplebooklet user, you have the right to be forgotten. You can permanently remove all of your data from simplebooklet by deleting your account.

All of your booklets will immediately be deleted upon confirmation. Where total deletion is not possible (for example, in the case of user analytics), personal data will be anonymized.

Data that we are required by law to keep for a certain period of time, such as invoices or offers, will be properly disposed of once the retention period is over.

Can I access my data?

Yes. As a simplebooklet user, you have the right to request access to all data we have stored about you. You may request a copy of your purchase history and any other personal information we have about you. To request this information, please contact support@simplebooklet.com. We will respond to your request within the one month response time.