Kixie GDPR (General Data Protection Regulation) Compliance Kixie GDPR (General Data Protection Regulation) Compliance

Kixie GDPR (General Data Protection Regulation) Compliance

Kixie Team Kixie Team

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union. It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. When the GDPR takes effect, it will replace the 1995 Data Protection Directive (Directive 95/46/EC).

It was adopted on 27 April 2016. It becomes enforceable from 25 May 2018, after a two-year transition period.

As far as Kixie is concerned, Kixie's telecom carriers and servers (Amazon AWS) are compliant with the GDPR standards. Your data is protected by industry-leading firewalls through AWS and fully compliant with security protocols.

We value the privacy needs of Kixie users as well as their customers and Kixie has implemented technical and organizational measures in line with the GDPR. We will continue to improve to safeguard all personal data processed by Kixie.

Kixie is committed to GDPR policies and the respect of individuals’ privacy and responsibility in handling personal data.

Kixie offers 100% data deletion per Article 17, right to be forgotten and to data erasure: "EU citizens can expect companies to stop processing and to delete their personal data upon request."

Regarding the specific regulations that are applicable to Kixie

Storage and Processing
 
Article 5, processing and storing personal data: All personal data must be processed lawfully and transparently, and only for the purpose specified to the individual. That data may be stored “in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.” All personal data must be processed securely to protect against unlawful access, loss or damage “using appropriate technical or organizational measures.” Those measures are not defined, but presumably if the data is lost or stolen, a company could be considered not in compliance.  

Kixie stores very little personal data: phone number, name, the date/times of phone calls, and call recordings. All of that data is only accessible if you connect via our virtual private cloud in Amazon. It is also limited by specific IAM (Identity and Access Management) roles in Amazon.