On May 25, 2018, the General Data Protection Requirement (GDPR) takes effect for any company controlling or processing data of E.U. citizens.
GDPR applies to both "controllers" and "processors."
- A controller determines the purposes and means of processing personal data.
- A processor is responsible for processing personal data on behalf of a controller.
Because atEvent collects data on behalf of a client and pushes this data (process) to a CRM, atEvent falls under the "processor" category.
HOW WE HELP YOU COMPLY
atEvent offers GDPR compliance features that can be enabled for events as needed. Below are the GDPR requirements and the atEvent features that help you comply:
Consent-at-Capture (Premium Feature)
You have the option when setting up or managing an event to enable a GDPR consent feature in the atEvent mobile app. This feature allows you to capture consent in the app at the time of lead capture during the event, either through a check box or a signature.
After consent is captured, you can then continue scanning and recording the interaction details. A GDPR Compliance “yes” indicator will show on the Leads page in atEvent Central for each consenting lead and can be mapped to your MA/CRM.
Right to Be Forgotten
You can permanently delete lead and interaction records in atEvent Central in order to comply with the Right to be Forgotten clause of GDPR. When one of your contacts requests that his information be removed from atEvent, you can delete the information from the Leads page in atEvent Central, and confirm the deletion when prompted. atEvent Central will delete the record and show a transaction ID for the deleted record.
NOTE: The information will only be deleted in atEvent Central—not your Marketing Automation or CRM system.