ZippyCrowd – GDPR Addendum

Full details of our sources of data, the reasons, handling and disposal of it and our sub processors.

Source:

Signup

Personal Data:

  • Email address
  • Real name
  • Location

Reason:

To provide a login to the service and contact you to help you use the product or learn about features.

Handling:

Securely managed in MySQL database (AWS RDS) and AWS Dynamo Databases. Only senior developers and DBA have direct access to data stores.

Disposal:

When a user deletes an account all information is cleared.

Security Outline

Here are some steps we are taking to further secure your data :

  • Real time data breach protection & monitoring/alerts
  • Common attack vector protection & monitoring/alerts
  • Secure by design/default development process integration
  • Further automated the deletion of personal data based on user action
  • Introduction of data breach plan
  • Hardened security on all infrastructure

Sub Processors

Sub Processor:

SendinBlue

Data:

  • Email address
  • Username
  • Feature usage

Sub Processor:

Google Analytics

Data:

  • Anonymised cookie data

Sub Processor:

Facebook

Data:

  • Anonymised cookie data

Sub Processor:

Mixpanel

Data:

  • ZippyCrowd username
  • User resource utilisation
  • ZippyCrowd username
  • Application usage statistics