GDPR

To comply with the General Data Protection Regulation (GDPR) laws passed by the European Union that go into effect beginning May 25, 2018. A sub-processor is a third-party company Prepr uses to process customer-related data. We’ve included the name of these companies, how we use them to process data, and links to their resources on customer privacy and security. 

GDPR Right to access

The GDPR gives individuals the right to request a copy of any of their personal data that are being processed, as well as other relevant information. Prepr offers you the possibility to export a customer. Go to ' Customer' and select the right customer. Click 'GDPR export' in order to download a Json with the full customer. This includes:

  • Personal details
  • Full address
  • Email addresses and phone numbers
  • Bank accounts
  • Subscriptions
  • Interactions (such as 'purchased, viewed, bookmarked, voted, commented)
  • Social profiles
  • Terms and tags
  • Access tokens

GDPR Right to erasure

This right is also known as the ‘right to be forgotten’. Individuals have the right to have their data erased. This can be easily done in the Prepr interface. Just search this customer under ' Customer' and click ' Delete'. All this customer data will be erased, immediately at the moment, you click on the confirmation button.

Prepr sub-processors

Company Processed data Resource
Amazon Web Services Cloud infrastructure
https://aws.amazon.com/compliance
Google Analytics Customer behaviour analytics https://support.google.com/analytics
Pusher Real-time communication https://pusher.com/legal/privacy
Stripe Payment processing https://stripe.com/en-ca/privacy
Sentry Application error reporting https://sentry.io/security
Helpscout Customer support https://www.helpscout.com/company
Expo https://expo.io/privacy
Hotjar User behaviour analytics https://www.hotjar.com/legal