Last updated May 03, 2022
Nothing matters more to us than the security of your data. We have you covered for the EU’s new General Data Protection Regulation (GDPR).
You can request that personal information in your account be permanently removed at support@getBrightspot.com.
Effective May 25th 2018, GDPR tightens the rules for businesses on how they collect, store and process EU citizens’ personal data. The new regulations impact organizations worldwide who collect and process personal data of EU citizens.
Europe is currently leading the way in terms of regulating the protection of personal data of individuals. The new EU General Data Protection Regulation (“GDPR”), which replaces the 1995 EU “Data Protection Directive” (and the laws of the various EU member states implementing the 1995 Directive), has been the focal point of discussion and compliance efforts for many companies around the world, including Brightspot.
Brightspot is committed to respecting the privacy rights of all of its customers and their users, and to taking reasonable and appropriate measures to protect the privacy and security of their personal information, including by implementing measures designed to comply with specific, applicable provisions of GDPR.
However, as a Brightspot customer you desire to have a GDPR-specific addendum to your agreement, please contact our Customer Success team at support@getBrightspot.com to put one in place.
Brightspot enables customers to be GDPR compliant. Briefly stated, that means Brightspot:
Provides sufficient guarantees to the controller to implement appropriate technical and organizational measures designed to safeguard customer data
Processes data (that could include personal data) only to fulfill its obligations as related to the Services
Enables users to modify and delete their personal data
Provides security documentation that describes the processes and procedures for safeguarding the data at our Security page
Can sign a contract that governs the processing of EU personal data
Protecting customer data is a top priority at Brightspot. We understand you are trusting us with your data and we take the responsibility of securing it extremely seriously. Our Security page outlines all of our practices.
Brightspot protects all of our customers with an array of security features.
Data encryption in transit and at rest
Data centers routinely audited with industry-standard SSAE-16 methods
Data redundancy for resilience during disasters
SAML, OAUTH, and OpenID support for secure authentication
Continuous network security monitoring
EU-US Privacy Shield Certified
Swiss-US Privacy Shield Certified
Industry-standard security evaluations
Independent third-party security reviews and penetration tests
Role-based and/or user-based authentication
IP address whitelisting
Don’t hesitate to contact us at support@getBrightspot.com.