The General Data Protection Regulation (GDPR) went into effect from 25th May 2018.
It is new legal regulation specified by the European Union in regards to protecting the integrity of the individual in the EU.
General Data Protection Regulation (GDPR) is the new EU (European Union) legal regulation for personal data protection that also affects non-EU organizations with customers who are individuals in the EU zone. The definition of personal data under GDPR has been summarized down into “any information relating to an identified or identifiable person”.
The purpose of GDPR is to harmonize the data protection laws across all member countries of the EU to strengthen the integrity of the individual.
GDPR applies to both data controllers and data processors.
A data controller is the party that determines the purposes and the manner in which personal data is processed. While the data processor is a third-party processing personal data on behalf of the controller.
UCS provides a service for sending and/or receiving of messages, principally by way of SMS ("Short Messaging Service").
Unique Computer Systems LLC (hereinafter referred to as "UCS")as the creator of the product Reson8, can be a data controller and data processor in different scenarios.
We are a data controller in the sense that we are storing personal data such as your email address and billing address etc.
We also are responsible for processing data for our customers in cases where we deliver SMS messages for them, which makes a data processor as well.
To be compliant with the regulation, to the best of our ability, we are currently working to examine and update our internal data systems and processes.
Messages are processed by Reson8 strictly in accordance with customer instructions and otherwise in accordance with the requirements of relevant laws, for the purposes determined by the customer.
As the “controller” for GDPR purposes, Reson8's customers necessarily have sole control over the specific categories of data subjects that may be the subject of processing by Reson8.
Typically, the personal data that Reson8 processes and the circumstances in which such data is processed, would be unlikely to result in significant harm to a data subject in the case of a data breach, however any assessment of risk associated with a potential data breach necessarily depends upon the types of personal data transmitted in the course of sending/receiving messages in accordance with the controller’s instructions and the context in which that data is processed.
Further, a Data Processing Agreement (DPA) between the data controller and the data processor would need to signed off, in the cases the data controller is affected by GDPR. The data controller is affected by the GDPR, if it is a controller of personal data of end-users in the European Union.
The DPA lay out the foundation of the obligations of the data processing and to allow our customers to continue to lawfully transfer EU personal data to Reson8 and Unique Computer Systems when the GDPR goes into effect. The DPA will be sent to the data controller via email when a Reson8 User Account is signed and approved.
Access to personal data stored by Reson8 and UCS is restricted. Specified customer and technical support personnel have limited access for the sole purpose of performing the messaging services that Reson8 is contracted to perform and to address any customer queries arising out of the performance of those services.
Reson8 may provide personal data to aggregators to facilitate the provision of the messaging services. Aggregators (who constitute sub-processors for GDPR purposes) will be engaged by Reson8 pursuant to a GDPR compliant contract. Reson8 does not provide personal data to any other third parties.
For Reson8, We use hosting services from Alibaba Cloud in the data centers based in the United Arab Emirates. Alibaba Cloud has been audited by NESA and ISR and meets the set of standards . To learn more about how Alibaba Cloud is conforming to GDPR, Please see here.
You may also review our Terms and Conditions and Privacy Policy.
For further questions or inquiries in regards to GDPR and your use of Reson8, feel free to email support@reson8.ae