What is GDPR?
The General Data Protection Regulation (GDPR) is a European regulation coming into effect on May 25, 2018. It's designed to improve the privacy and security around personal data for everyone in the European Union, and gives EU citizens new and improved rights to access and control their data.
GDPR at Trail
GDPR is about giving everyone greater control over their personal data online, enhanced transparency about how companies use and share that data, and ensuring companies keep that data secure. At Trail, we think this is a good thing wherever you're from! We made GDPR a priority a while back, and treat all personal data with privacy and security regardless of where your business is based. For every new feature, we proactively apply the Data Protection by Design principles. This article is set out to reassure everyone that we're prepared.
Our Privacy Policies should cover everything you need to know for GDPR purposes. They can be found here:
We've also pulled out answers to some frequent GDPR questions below. If you have any other questions or concerns at all about our GDPR at Trail, please feel free to get in touch via email to firstname.lastname@example.org.
Where is my data stored?
The Trail application is hosted in Heroku's EU region, which means all data is stored on AWS in their eu-west-1 region in Dublin, Ireland.
How is my data shared?
Data gathered in our application is sent for analytics and support purposes to Intercom (https://www.intercom.com/), Segment (https://segment.com/), Amplitude (https://amplitude.com/), Google Analytics (https://analytics.google.com) and Full Story (https://www.fullstory.com/). Form widgets are powered by Typeform (https://www.typeform.com/); any data submitted on Typeform is stored by them and sent to us.
We never, under any circumstances sell, rent or lease your personally identifiable information to others. Unless we have your permission or are required by law, we will not share your personal information with the exception of the selected third-party tools outlined above, and always in a secure manner.
What does this mean for me?
If you’re a company, this means transparency and visibility of how Trail processes any personal data collected as your employees use our application.
If you’re an individual, you don't need to do anything - this just means your data is safer than ever. You have the right to access all the data Trail holds on your behalf. If at any point you would like to know what personal information we hold on you, to receive a copy of it, or to have your personal information removed from our systems please email email@example.com with details of the request and we will process your request within 28 days. The data will be provided in a standard CSV format.