Sendinn cares about your privacy and is GDPR compliant.

Start free trial

What is GDPR?

The General Data Protection Regulation (GDPR) is a new set of rules designed to give EU citizens more control over their personal data and make organizations accauntable for data security. It aims to simplify the regulatory environment for business so both citizens and businesses in the European Union can fully benefit from the digital economy. The 5 most important rights that GDPR grants are:

Right to rectification

There must be a possibility to rectify personal information at any time.

Right to be forgotten

The data subject has the right to request a complete deletion of its data.

Right to portability

The collected data must be portable and upon data subject request, could be transferred to a third party.

Right to object

The data subject has the right to manage any specific use of its information.

Right of access

The data subject has the right to be informed of any of their personal data that has been collected and its intended use.

How Sendinn complies with GDPR?

Right to rectification

Our clients are able to rectify their personal information at any time in account settings. As a data owners, they also have full control of editing their email lists.

Right to be forgotten

Our clients can cancel their subscriptions at any time. They can also contact our support and ask to completely delete their information and data.

We also help our clients to be compliant data controllers - the emails sent from our service are created to suit GDPR requirements. We automatically add unsubscribe links, so data subjects are able to unsubscribe at any time to any specific use of their information, f.e.: newsletters.

Right to portability

Our clients have an ability to easily export their collected data (email lists) to most common readable formats (.xlsx, .csv, etc.).

Right to object

Our clients have full access rights and ownership of their email lists. They can easily access, transfer, modify, add or delete their data.

Right of access

Our clients can request our support to be informed of any and all of their personal data that has been collected.

Who does the GDPR apply to?

GDPR applies if an organisation that collects data from EU residents or an organisation that processes data on behalf of a data controller or the data subject is based in the EU. The regulation also applies to organisations based outside the EU if they collect or process personal data of individuals located inside the EU.

Lawful basis for processing personal data

If you want to legally collect email addresses from your customers, you must get explicit consent to do so. F.e., your email subscription form should contain options to provide data subjects the ability to agree or disagree with their personal data processing.

Other case in which you can process personal data is when there is at least one legal basis to do so. According to legal basis, you can collect personal info to protect the vital interests of a data subject or another person, to perform tasks at the request of a data subject, to fulfill contractual obligations with a data subject, to comply with legal obligations or to perform a task in the public interest or in official authority.