On May 25th, 2018, the General Data Protection Regulation (GDPR) will become enforceable and apply to organisations located within the EU and outside if they offer goods or services to, or monitor the behavior of, EU data subjects. The GDPR provides rules for the protection of individuals in Europe on how their data may be collected, moved, stored, and processed. We have prepared this FAQ to answer some of the most common questions regarding GDPR and Woobox.

Is Woobox a Data Controller or Data Processor?

When customers create campaigns on Woobox, the customer is the data controller (or if an agency, processor for the data controller). Woobox can also be a data controller, for example when you create a Woobox customer account or enable Woobox controlled social app login integration in your campaigns.

Does Woobox offer a Data Processing Addendum (DPA)?

Yes, Woobox offers a DPA to our customers whose processing falls under GDPR. To request a DPA for your organization please contact our customer support team at support@woobox.com.

What security measures does Woobox have in place to protect data?

Protecting our customer’s data is one of our top priorities at Woobox. We have implemented a number of security measures to protect data and ensure compliance with GDPR. Our security documentation is available for inspection to customers who have an executed DPA with us.

How does Woobox handle delete instructions from customers?

Woobox’s dashboard provides customers with the ability to delete most data. For any data not available for deletion through the dashboard, Woobox will fulfill delete instructions from customers communicated via customer support.

Who should I contact if I have questions?

For questions about GDPR related to your Woobox account please email our customer support team at support@woobox.com.