What does GDPR mean for you?
The EU General Data Protection Regulation (GDPR) is a law to protect the data privacy rights of individuals. It goes into effect on May 25, 2018. The purpose of the law is to empower users with the ability to learn about and manage their data stored by companies.
In GDPR terminology, Memsource is a “data processor,” because you control the purpose and ends to which we process your data. Memsource has always taken data very seriously, and your personal data is no exception. To reflect our compliance with GDPR, we have updated our Terms of Service and Privacy Policies, and encourage you to read them.
In the meantime, here’s a quick summary:
Your User Data
GDPR defines personal data as any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. In our updated Terms of Service, we describe exactly what user data we store, for what purposes, and how we guarantee security.
We restrict and keep record of the Memsource employees who have access to your data. Those who do access it only do as part of their work, ultimately to provide you a better user experience.
At your request, we will delete your account and all associated information, including files, translation memories, term bases, or other content.
Memsource uses the latest internet technologies and strict policies to provide maximum security to Memsource users.
We store user data in a highly secured location using an advanced firewall and additional security technology to prevent unauthorized access. Specifically, Memsource is certified for ISO 27001. The Memsource Cloud application has also been audited by an independent security consultancy following the OWASP ASVS standard, and the connection to Memsource Cloud is secured by encryption and TLS 1.2. Read more about Memsource security.
Memsource only uses sub-processors following a contractual agreement guaranteeing GDPR compliance and strict data security policies. See our current list of sub-processors.
Memsource preparation for GDPR
We have appointed an internal GDPR team to learn, implement, and enforce compliance within Memsource. This, combined with a thorough training program for all employees and contractors will increase the company’s security culture.
We have revised our legal policies to reflect compliance.
We are checking partners and sub-processors for compliance.
Memsource will implement an annual audit program to ensure long-term compliance.
Any new solutions will take into account the new requirements for data security. At the same time, we are looking for the latest solutions in the field of data protection, and will apply them to our processes, infrastructure solutions, and future endeavors.
Do you have questions? Please send them to firstname.lastname@example.org.