Our Approach to GDPR

Last updated: October 27, 2021

From the 26th May 2018, the European Data Protection Regulation (GDPR (EU) 2016/679), protecting the privacy of personal data and the free movement of such data when transferring outside the European Union (EU) and EEA (European Economic Area), became law.

On 1 January 2021, the UK officially left the EU and, as part of the European Union (Withdrawal) Act 2018, adopted the full regulations, known as UK GDPR as part of the Royal Assent to the Data Protection Act 2018. This was deemed equivalent by the European Commission in June 2021 and, essentially, the terms of GDPR continue to apply in the UK for the foreseeable future.

If you or anyone within your organisation uses one of our products or services and is an EU citizen, then you are subject to the regulations set out in the GDPR framework. If you are in the UK, then you are subject to the regulations set out in the UK GDPR. At Klopp Industries LTD we take your privacy and security incredibly seriously, and if you have any concerns or questions about this or another policy please contact us at any time at [email protected] and we’d be very happy to clarify things.

This page is designed to provide you with an easy to understand framework for how we tackle GDPR at Klopp Industries.

Who you are

If you use one of our products you’re either a user or billing manager. Billing Managers are the main internal point of contact at your organisation and have control over some of your company settings and billing controls. If you’re not sure who this person is within your organisation, reach out to us at [email protected]

Data requests, deletions or modifications:

Being a citizen of the EU and using our services means you have specific rights that cover your use of data, as part of Chapter 3 of the GDPR. This gives you the right to request, modify and delete your data. If you are instead a citizen of the UK, then the same rights are covered by Article 17 of the UK GDPR.

If you wish to do this, in the first instance contact your Billing Manager, who can then contact us to fulfil your request by emailing [email protected]

Transferring UK or EU data to other countries:

If your team of users and billing managers has people contained within the UK or EU, you must ensure that appropriate protection is in place to store and process your personal data with countries recognised by the UK government or European Commission, respectively.

At Klopp Industries, following guidance from the European Commission, we no longer adopt the Privacy Shield certification as the framework was deemed invalid by the Court of Justice of the European Union. As such we now adopt the EU Model Articles, better known as the Standard Contractual Clauses, to meet these GDPR requirements. These are deemed to be incorporated within our Privacy Policy. If you wish for a more specific DPA (Data Processing Addendum) provided by ourselves, please email [email protected] with “Data Processing Addendum Request” as the subject line.

Lodging Complaints:

We’d never want to have things escalate to the point in which you’d need to file a complaint with your Data Protection Authority. Please contact us in the first instance at [email protected] if you feel like we’re not complying with your rights under GDPR.
If you’re a citizen of the EU you can report any potential GDPR violations to the Data Protection authority that’s local to your country here: http://ec.europa.eu/justice/article-29/structure/data-protection-authorities/index_en.htm
If you are in the UK, you can report any violations to the Information Commissioner’s Office (ICO) here: https://ico.org.uk/make-a-complaint/

Other pages you may find helpful:

The regulations set out in GDPR and UK GDPR are still relatively new and many companies are still adapting to the changes surrounding it. We anticipate that things may well change and we’ll update this and other pages as quickly as we can to ensure we’re able to adjust to any new requirements or changes as they occur. There’s a few links here you may find helpful to get a further insight from our own documentation, the official regulations and organisations we partner with:
Our sub-processor list: https://simplepoll.rocks/sub-processors
Official GDPR framework: https://ec.europa.eu/commission/priorities/justice-and-fundamental-rights/data-protection/2018-reform-eu-data-protection-rules_en
A helpful searchable guide to GDPR: https://gdpr.algolia.com/
A helpful guide to UK GDPR: https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/
How our partner, Slack approaches GDPR: https://slack.com/gdpr
How to contact us with further questions: [email protected]