Informed and unambiguous consent
What is GDPR?
One of the objectives of the General Data Protection Regulation, mandatory since May 25, 2018, is the harmonization at European level of data protection regulations, also establishing new guidelines and obligations with respect to previous regulations.
Get proper consent to process personal data
Consent should be given by a clear affirmative act establishing a freely given, specific, informed and unambiguous indication of the data subject's agreement to the processing of personal data relating to him or her.
Moreover, consent must be given explicitly. Explicit consent can be thought of in much the same way as the GDPR’s standard requirements for obtaining consent. The difference is that it must be obtained in a way that leaves no room for misinterpretation.
Finally, consent must be demonstrable, and companies must be able to document the granting of consent by the interested party.
In compliance with the regulations, we have developed a platform so that you can obtain the explicit consent of users easily and quickly, for you and for them .
By email or SMS
Load your database into an SFTP account that we will enable, with the email or mobile of your users. We send to your users a Registered email o Registered SMS with a link to a webpage.
Acceptance of clauses
On the webpage your users can read your privacy conditions and select those clauses they want to accept.
The Documentary evidence
Finally, we issue a documentary evidence, electronically signed with the accepted clauses, and we store it in the SFTP.
The Documentary evidence
The documentary evidence collects the evidence from the entire process; in this case, all the actions that the user performs to state freely, specific, informed and unambiguously the processing of personal data relating to him.The Documentary evidence
It is a file that contains the values in a table of text lines organized so that each column value is separated by a comma from the next column's value and each row starts a new line.
The file must contain the unique identifiers of your clients, their email and their mobile phone. If you do not have that information just leave a blank space. For example:
You decide whether to send first the email or the SMS.
Yes, the content of these messages is fully customizable. Email also allows you to add your own logo.
Every 24 hours, we will generate a CSV file, with those users that have accepted or rejected the clauses. You can find the file in your SFTP account. This file has the information of the users of your CSV file, a column with the status of each clause, and, finally, the name of the certificate for that user. As per the above example, for the acceptance of 3 new clauses:
The sending of the initial communication activates an expiration counter. This counter is fully customized to meet your needs. When it expires, the certificate will be automatically generated and that user will be part of the CSV file of that particular day, with the expired value.
Definitely yes. We configure a SFTP account for each language, and you will have to segment your users by language and create a CSV for each of them.
Go for it, no problem. We will set an SFTP account for each type of user, and you will have to segment your users according to type and create a CSV for each of them.