GDPR & Privacy

What is GDPR?

The GDPR is the primary law regulating how companies protect EU citizen's personal data. It went into effect on May 25, 2018.

Overall, GDPR:

  • gives individuals broader rights and control to their data

  • strengthens and standardizes user data privacy across the EU

  • requires new and additional obligations from all organizations that handle EU citizen's personal data, regardless of which country the organizations are registered.

At ToneDen, we've always taken privacy seriously for our users. Over the past year, we've been working on changes to help every ToneDen user better understand and control their privacy and data, regardless of their location.

How does ToneDen accommodate for GDPR?

ToneDen provides a number of marketing tools that allow creators, brands, and businesses of all kinds to reach, engage, and delight their audiences across social media. By nature, we've designed these tools to be consent-based, where users specifically give consent to enter and engage with campaigns: the data that they provide is only shared with the owner of that campaign. In more technical terms, ToneDen operates as a processor of data (Data Processor) on behalf of you, the customer, who inherently owns the data and decides what to do with it (Data Controller).

We've been slowly implementing a number of changes for our platform to be compliant and, more importantly, give your fans and customers the ability to understand and control the data they provide to you.

  • You can now contact us directly at privacy@toneden.io for any concerns, requests, or questions about privacy and data

  • We've appointed a Data Protection Officer

  • We've built a Privacy Portal that provides information on what data we collect, how it's used, and how you can request any information around processing, transferring, or removing your data

  • We've updated our Privacy Policy to be complaint with GDPR

  • We've updated our Terms of Use Agreement to explain how our service works in relation to your data

  • We've updated our Cookie Policy to better define how cookies are stored and used

  • We've added a list of our Vendors to be more transparent about what, with who, and how data is shared with third-parties

  • We've updated the opt-in experience for how people engaging with your campaigns can give explicit consent to subscribe to your contact lists

  • We've added a new universal "Opt-Out" feature across all campaigns and in our Privacy portal for end users engaging with your campaigns to easily remove themselves from your contact lists

Here are ways we've always been compliant for GDPR:

  • Using trusted and certified compliant data-centers that are certified under EU-US Privacy Shield

  • Encryption of data using TLS 1.2 in transit and at rest with AES-256

  • A live chat and support center that handles any privacy and data requests in under one business day

  • The ability to "be forgotten" with a one-click feature to permanently erase any information and data with your account on ToneDen

How will we be improving how ToneDen registered users control their data?

  • We're rolling out a new settings interface that provides advanced options for seeing and exporting the data that you own on ToneDen, deleting specific sub-account data, and completely erasing all data that you have on the platform.

  • We'll be rolling out 2FA authentication to better secure your account

  • We're improving the importing and exporting interface to help you avoid handling any data that may not be in compliance

How will we be improving how consumers that engage with your campaigns can control their data and consent?

  • We're redesigning our consent methods across all campaigns to clearly describe the intent of the actions a consumer may perform on a campaign

  • We're adding a new privacy toolbar across campaigns that makes it easy for any consumer that engages with one of your campaigns to opt out or be forgotten with just one click

  • We're improving our cookie consent banners across campaigns that employ any kind of cookie tracking to make it easy for consumers to understand and opt-out of being tracked

These changes have been available to all users since May 25th, 2018.

We'll continue to improve and invest in our platform to provide you with the tools and services that let you continue reaching the people that matter.

Last updated