Details about this thread
  • State Not Answered
  • Replies 6 replies
  • Subscribers 292 subscribers
  • Views 1060 views
  • Users 0 members are here
Related content from around SugarClub

Privacy policy sample

Nicolas A

Hi All

We're currently revising our data processing tools to be prepared for EU GDPR by end of May. For that reason, I'm re-writing our general privacy policy which should explicitly include each of our tools.

Since SugarCRM is one of our most frequently used marketing tools, I definitely need to explain the processing and collection of data through it. 

I wonder if there is any sample available from Sugar's side that could be used within a privacy policy? I already took a look at the dedicated EU GDPR section here in the community but couldn't find anything related.

Best regards

Nicolas

Parents
  • 0

    Hi Nicolas A,

    I don't think SugarCRM itself is the tool you need to look for. OFC SugarCRM is processing data and you need to prove if you are storing data like "race", "religion" etc which are especially protected by the GDPR but keep in mind:

    SugarCRM is not colecting data, it stores and uses it. You need to act before the data comes in i.e. your website, lead sources etc. Prepare yourself for GDPR by having processes ready that can manage a request from an individual that is asking you about its data that has been saved and used (how?) somewhere in your company. Have a workflow/checklist ready for handling those requests, put in aprovals and hiding data rules according to the GDPR.

    And many more....

    Cheers

    Björn Canales Pfisterer

    Technical Support Manager

    provalida GmbH

  • 0 in reply to Björn Canales Pfisterer

    Hi Björn

    Thanks for responding!

    I see as a GmbH you're based in Germany as well. I would strongly recommend reading the new DSGVO because even cookies are going to be rated as personal related data…the ones you mentioned like "religion" are even worse since they're going to be treated as special sensitive PRD.

    I would also not agree that the task of data protection ends by ensuring a process. E.g. SugarCRM is not based in the EU but part of the Privacy Shield, good to know but you need to inform your user about that fact in a very transparent way.

    And a little help with that level of transparency from Sugar's side was what I was looking for…

    Best

    Nicolas

Reply
  • 0 in reply to Björn Canales Pfisterer

    Hi Björn

    Thanks for responding!

    I see as a GmbH you're based in Germany as well. I would strongly recommend reading the new DSGVO because even cookies are going to be rated as personal related data…the ones you mentioned like "religion" are even worse since they're going to be treated as special sensitive PRD.

    I would also not agree that the task of data protection ends by ensuring a process. E.g. SugarCRM is not based in the EU but part of the Privacy Shield, good to know but you need to inform your user about that fact in a very transparent way.

    And a little help with that level of transparency from Sugar's side was what I was looking for…

    Best

    Nicolas

Children
No Data