GDPR & Spot.IM

We at Spot.IM are fully dedicated to protecting our users' privacy and have made all efforts to ensure that our products and services comply with the GDPR. Our team has been working to review and expand our tools to ensure our business partners and users are aware of Spot.IM's security policies and understand their choices with respect to their personal data.

Spot.IM GDPR Principles

transparency

Openness

We'll provide extensive guidance on our revamped Data Policy to individuals using Spot.IM products. We'll do this through in-product alerts and user education campaigns to make sure people fully comprehend how their personal data is being used and the many options they have.

control-panel (1)

Authoritiy

We will continue to provide Spot.IM users with authority over how their data is used. We’re including pertinent details to our Users' Rights section as crafted by the GDPR, i.e. The right to be forgotten, the right to data portability, the right to rectification, etc.

project (1)

Self-Evaluation

We will continue to meet with think tanks, government officials and business leaders from across the globe to keep ourselves accountable. We will never stop requesting feedback and ways to improve how we secure personal data.

Ahead of Europe's New Data Protection Law

On May 25th, 2018, Europe new’s General Data Protection Regulation (GDPR) will go into effect. This significant piece of legislation will empower and make consistent data protection laws across Europe, and rightfully offer EU citizens more ownership of their personal data.

 

Every organization that processes personal data about men and women in the EU will be directly affected. Spot.IM will proactively and enthusiastically undertake considerable measures to more than just comply with the GDPR. Soon we’ll be launching new tools and features and rolling out updated Privacy Policy and Terms of Use agreements. With these and any future positive changes, Spot.IM will remain as deeply committed as ever to helping media companies all over the world build independent, thriving communities.

 

By your continued use of Spot.IM’s products, you confirm your acceptance of our updated Terms of Service and Privacy Policy. Also please note that as of May 25th, unless specifically agreed by both parties, the continued use of our products means you accept our Data Processing Agreement. These legal documents all form an integral part of your agreement with Spot.IM.

FAQ

Spot.IM acts as a data controller (unless otherwise agreed with the publisher), as we independently determine the purposes for the collection of personal data. As a data controller, we are meeting the responsibilities of data controllers (such as exercising user’s rights). When the personal data is initially collected from the data subject (i.e. in the SSO) the data is disclosed directly to us.

Spot.IM may collect two types of data and information from its Users: un-identified and non-identifiable information, and individually identifiable information.

Personal Information which is being gathered may consist of the following: User’s name, public profile picture URL address, Social Network Account User ID, e-mail address, date of birth, gender, occupation or work information, educational background, IP addresses and other information which the User made public. 

 

For detailed information check our Privacy Policy.

GDPR allows for the transfer of personal data under certain exceptions. When transferring personal data outside the EEAU, Spot.IM ensures that is has the appropriate legal mechanism, such as to approved jurisdictions (such as Israel), entering into Standard Model Clauses or sharing data with Privacy Shield certified companies (in the US).

Spot.IM is not directed to children under the age of 16 and Spot.IM does not knowingly collect personal data from children. See further information on the Terms of Use.

As of today, GDPR requires that data is only held for so long as it is necessary for the purposes for which it was initially collected, and that data subjects are informed of the retention period and retention period criteria. As thus far, Spot.IM will continue to comply with these demands.

Users are able to exercise their rights including the right to: rectification, erasure, access to data and data portability on Spot.IM’s platform via the user’s Privacy Section. Read more about it here.

Spot.IM has a documented security program that details the technical, administrative, and physical safeguards required for the processing of personal information. The procedures related to data weakness, events, and personal data breaches are: 1) The Monitoring, Measurement, Analysis, Evaluation Procedure, 2) The Data Protection Policy Review Procedure, 3) The Risk Assessment Procedure, and the 4) Reporting Information Security Weaknesses and Events Procedure.

You may delete your Spot.IM account through your profile Privacy Section. For further instruction see our detailed blog post.

Please note that when you delete your account, your comments will still be visible but will appear to be written by a guest. All of your personal information will be irreversibly anonymised. 

You may receive a file with all of the data Spot.IM has collected on you through your profile Privacy Section. For further instruction see our detailed blog post.

Please note that the creation of the dataset may take up to thirty (30) days. 

You may rectify any piece of personal information stored on Spot.IM’s servers through your profile Privacy Section. For further instruction see our detailed blog post.

Please note that in the case your using Spot.IM’s product on a site which is using a Single-Sign-In solution (SSO), changes to the information can only be made through the publisher.

Sure. Having a European representative is a GDPR requirement for non-European companies.

You may reach out to our representative in the EU at: spot.im@gdpr-rep.com.

Resources