What does GForces do to support you?
As a GForces client, you will typically act as the Data Controller for any personal data you provide to GForces in connection to your use of our services. And as a Data Controller, you will determine the purposes and means of processing personal data, while we, as the Data Processor, will process that data on your behalf when you use our products and services. To help ensure that there are the appropriate agreements in place to continue processing data, GForces drafted a Data Processing Addendum to the SaaS terms and conditions.
As a Data Controller, you are responsible for making sure your business, and your data processors, have the right measures in place, at both a technical and organisational level, for you to easily demonstrate that any data processing is done in compliance with the law. This is why GForces maintains and continually improves an Information Security Management System (ISMS) that is external audited and conforms to and meets the requirements of international standard ISO 27001:2013. Further information about GForces ISMS can be found below.
GForces continues to be aware of changes to legislations regarding data security and privacy and will always plan to ensure that the NetDirector® suite of technology supports compliance to these. In preparation for the GDPR, all enquiry forms were changed to allow consumers to be informed about how their data was being processed with the addition of in-form and modal window statements of fair processing, opt-in marketing preferences, and the ability to capture age consent to prevent the processing of data of minors.
In addition, GForces created the data preferences centre, a one-stop-shop where a data subject can exercise their rights under the GDPR to update their marketing preferences, make a subject access request, and make other specific requests about their data. Our commitment to both GDPR and providing the best levels of customer service means that we will continually look to improve our GDPR offering.
To ensure security in email distribution, the decision has been made to migrate our email services to Amazon’s Simple Email Service (SES), which will support GForces strategy for scalability, and provide a more reliable service to GForces’ customers.
As part of implementing appropriate technical and organisational measures, GForces only holds data collected from online enquiries in its raw format for a period of thirty one (31) days, after which it will be anonymised using technologies which do not allow this process to be reversed. This helps to reduce the risk to data subjects should data be compromised. GForces also supports the transfer of data to many third party lead management or CRM systems ensuring that data is available in the systems that you want it stored in.
We are continually researching future changes in laws which have the potential to affect our clients. To support this, we make any necessary technological changes to ensure compliance.