What is the GDPR?
The GDPR is a comprehensive data protection law that replaces existing European privacy laws and strengthens the protection of personal data in an increasingly data driven world. The GDPR is enforceable in each EU member state and gives the providers of personal data greater control over that data.
When is the GDPR coming into effect?
The GDPR comes into effect on 25 May 2018. We’ve updated our processes, systems and policies to make sure we’re fully compliant.
What is personal data?
Any information related to a natural person (individual) that can be used to directly or indirectly identify the person. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.
Who does it affect?
The GDPR applies to any organisation that processes personal data of EU individuals, regardless of whether the organisation has a physical presence in the EU. For Sling customers, that’s any organisation with one or more employees in the EU.
Where is my personal data stored?
All personal data collected from EU residents is stored in the United States of America.
What are my main rights?
The GDPR grants individuals, in their capacities as consumers, a range of rights they can exercise under particular conditions:
Right of access: Individuals have the right to obtain from the data controller confirmation as to whether or not personal data concerning them is being processed, where and for what purpose. Furthermore, the controller shall provide a copy of the personal data, free of charge, in an electronic format.
Right for data portability: Individuals have the right to obtain and reuse their personal data for their own purposes across different services. On request, data controllers must give individuals their data in an easy to read format or pass it directly to the new provider.
Right for data rectification: Individuals have the right to obtain rectification of inaccurate personal data without undue delay and taking into account the purposes of processing, the right to have incomplete personal data completed.
Right to be forgotten: Individuals have the right to have the data controller delete their personal data, cease further dissemination of the data, and potentially have third parties halt processing of the data. The conditions for deletion include the data no longer being relevant to original purposes for processing, or an individual withdrawing consent.
As an employee, how do I request to be deleted from my company account?
To delete your account and the information your current or previous employer holds about you, you need to send a request directly to this employer asking them to delete your employee account. They can then delete your employee account in Sling. If you have worked for multiple employers, who used Sling, you will need to contact each employer individually.
As an employee, how do I request that my data is deleted in Sling?
To delete the information Sling holds about you, you need to send a request directly to Sling asking us to delete your data. To send that request, please contact privacy@getsling.com.
As an employer, how do I delete an employee account?
You can remove an employee and all the associated personal information by deleting the employee from your company account in Sling.
Who can delete an employee account?
Account admins and managers can delete employee accounts.
Can I recover a deleted account?
No, once an account is deleted it cannot be recovered.
Where can I read more about the GDPR?
For more information about the GDPR, please visit
https://www.eugdpr.org/eugdpr.org.html.
If you have more questions about how Sling is GDPR compliant or what it means for your business, please contact privacy@getsling.com.