The European Union General Data Protection Regulation (GDPR) is a data privacy law that applies to all companies processing the personal data of people in the EU, regardless of the company’s location. Overall, the GDPR was created to further safeguard data privacy for citizens of the EU, while standardizing data privacy laws in Europe and changing how organizations manage data privacy.
TestCaseLab is committed to privacy and has implemented a GDPR compliance program. Here is an overview of the key steps TestCaseLab has taken to comply with the GDPR:
We store data that customers have given us voluntarily. For example, in our role as data controller, we may collect and store contact information, such as name, email address, when customers sign up for our products and services or seek support help. We also may collect other identifying information from our customers, such as IP address, SSH public keys or Oauth tokens for external services.
We separately act as a data processor when customers use our services to process EU personal data, such as uploading personal data to TestCaseLab. Customers decide what personal data, if any, is uploaded to our application.
Customers have the ability to remove or delete information they have uploaded to our products. Likewise, customers may deactivate their company account and request that all personal data we have collected and stored is deleted. Company account is deleted automatically after six months of total inactivity.