Umbraco and GDPR V

Umbracos as a Data Controller, Data Processor and Storage of personal data outside EU is forbidden... or is it?

Written by Kim Sneum Madsen

We are asked by customers about GDPR e.g. do you have a Data Processor Agreement for your cloud customers? Where are my data stored? Are you using sub Data Processors? And; Can I see your Data Processor Agreement with them? Although not obliged by law to supply answers to all of these questions, we have in the spirit of openness decide to share.

One of the things we want to share is our work with obtaining Data Processor Agreements from our suppliers. We have identified numerous suppliers eg. account software, telephone system, hosting suppliers, support tools etc.

Therefore, and as mentioned, in the spirit of openness and collaboration, a whole section of GDPR related stuff has been created on our website. Other than what we have announced previously, you can also now find information about:

Umbracos as a Data Controller (including an example of a suppliers DPA)
Umbraco as a Data Processor (including our DPA with Microsoft)
Storage of personal data outside EU is forbidden (ish)

Any questions/comments feel free to reach out to me sneum@umbraco.com

Find all our GDPR related initiatives here