DeciZone’s Commitment to GDPR

Effective: 5th Feb, 2020


Our commitment : DeciZone is fully committed to compliance with the GDPR. Privacy and transparency are lifelong commitments for DeciZone.



DeciZone is designed for Enterprise

  • Access control (authentication and authorization)
  • Continuous network and security monitoring
  • Vulnerability management
  • Incident response and recovery
  • Penetration testing
  • Security awareness training
  • Reviewed partners, to ensure our customers are always protected and secure
  • Multiple data centers to guarantee a secure and highly available service at scale
  • Data encryption at rest and in transit

What is the GDPR?

The GDPR is a comprehensive data protection law in the EU that strengthens the protection of personal data in light of rapid technological developments, increased globalization, and more complex international flows of personal data. It updates and replaces the patchwork of national data protection laws currently in place with a single set of rules, directly enforceable in each EU member state.


Why is GDPR so important?

When the European Data Protection Directive was introduced in 1995, the law makers were addressing the risks posed to personal data that existed during the formation and early years of the Internet.

The impact of GDPR is significant as it affects any business that collects data in Europe (whether they are based in Europe or not). It has effectively introduced the first global privacy standard. GDPR puts a greater weight of responsibility on individuals and organizations whose businesses involve the collection of personal data, and requires those businesses to give individuals greater visibility into, and control over the data they provide to those businesses.

GDPR also provides greater protections for EU citizen data by imposing strict obligations on data handling, while making businesses more accountable for how they handle data.


What has DeciZone done for GDPR?

Research : Thoroughly research the areas of our product and our business impacted by GDPR.

Plan : Develop a strategy and requirements for how to address the areas of our product impacted by GDPR.

Consolidated Account Preferences : Find all your account’s preferences and settings in one convenient page.

Ready to help : We also made it easy for you to contact DeciZone support team for help.

Legal basis of Explicit Consent : At several places in our website, we ask you for your explicit consent before accepting your personal information like email address, physical address, phone number and name.

Legal basis of Legitimate Interest : We may collect and use Personal Information from you where the processing is in our legitimate interests and not overridden by your data-protection interests or fundamental rights and freedoms. Typically, our legitimate interests include improving, maintaining, providing, and enhancing our technology, products, and services; ensuring the security of the Services and our Websites; and for our marketing activities.

Legal basis for Legal Obligation : If you are a Member, we may need the Personal Information to perform a contract with you. In some limited cases, we may also have a legal obligation to collect Personal Information from you.

Data Breach Notification : As soon as we discover a data breach in our system, we will notify you within 72 hours using your login email.

Data Portability & Export : We have made it easy for our customers to export their personal information inside their account settings.

Account Deletion & Right to be Forgotten : Our customers can now permanently delete their DeciZone account easily right inside their account settings.

Privacy by Design : DeciZone is designed from ground up with privacy by default. All your information is private by default. Even the content your create is private by default unless you decide to share it.


What do DeciZone Customers need to do?

IF you are going to share your Content with any EU customers you need to do the following:

  1. Consent : If you are collecting any personal information, you are required to ask for explicit consent first .
  2. Data Breach Notification : If we discover a data breach on our side, we'll notify you as soon as possible using your login email. It is your responsibility to notify any of your customers who may be affected.
  3. Data Access : You need to allow people to access any personal information that you have about them and this must be provided free of charge, in a format that is easily readable. The flowchart activity log emails and activity reports are a good place to start.
  4. Delete Customer Data or Right to be Forgotten : You will need to permanently delete any personal information of a customer when that customer asks to have their personal information erased.

DeciZone's infrastructure

DeciZone infrastructure is built using Amazon Web Services which has the necessary approvals ( more information at https://blogs.aws.amazon.com/security/post/Tx3QAALRNBIK9K1/Customer-Update-AWS-and-EU-Safe-Harbor , https://aws.amazon.com/compliance/gdpr-center/ & https://aws.amazon.com/compliance/data-privacy-faq/ ) to allow DeciZone to transfer personal data outside Europe and more specifically to USA. Our servers and all the data including the data transferred from EU is located in USA.

DeciZone’s processing of personal data is controlled by a DeciZone’s Privacy Policy.


DeciZone's Sub-Processors:

  1. Amazon Web Services
  2. Mailchimp
  3. G Suite (Google Apps)
  4. Stripe
  5. Zapier
  6. Calendly
  7. Zendesk
  8. Salesforce

Questions & Concerns

If you have any questions about our practices or this privacy policy, please contact us at DeciZone, Inc., 43106 Starr Street, Fremont, CA 94539, USA, or email us at TermsAndPrivacy@DeciZone.com.



Last updated: 5th Feb, 2020