Is Meetaway GDPR compliant?
Yes, Meetaway is GDPR compliant. You can read more about Meetaway's support for GDPR.
At it's core, we're proud to respect people's data and privacy and do so in accordance with GDPR's 6 primary principles. We would choose to do the same if GDPR didn't exist (although, perhaps, in a less bureaucratic way).
Furthermore, one of our founders has run the data function for 3 private equity and venture capital funded healthcare companies, where data privacy is of significant importance. As such, we've incorporated data privacy into the core of our business and are well versed in best practices.
For starters, we typically don't have particularly sensitive information stored other than email and passwords since attendees mostly use our site to create public profiles for other attendees to view. This makes us a low-interest target for potential hackers. Additionally, we don't record video calls on our platform.
Nonetheless, we do a lot to keep everything safe and secure just in case and go well beyond what would typically be expected for a company of our size. For example, we encrypt our website, encrypt video calls, encrypt our database at rest and in-transit, utilize firewalls, limit ports, limit sensitive data, salt and hash passwords, conduct regular penetration testing, limit who on our team has access to data, and regularly improve our security.
In other words, there are many security layers in place and even if someone were able to get through all of them and into our database, they wouldn't be able to access the information because it's encrypted.
At it's core, we're proud to respect people's data and privacy and do so in accordance with GDPR's 6 primary principles. We would choose to do the same if GDPR didn't exist (although, perhaps, in a less bureaucratic way).
Furthermore, one of our founders has run the data function for 3 private equity and venture capital funded healthcare companies, where data privacy is of significant importance. As such, we've incorporated data privacy into the core of our business and are well versed in best practices.
For starters, we typically don't have particularly sensitive information stored other than email and passwords since attendees mostly use our site to create public profiles for other attendees to view. This makes us a low-interest target for potential hackers. Additionally, we don't record video calls on our platform.
Nonetheless, we do a lot to keep everything safe and secure just in case and go well beyond what would typically be expected for a company of our size. For example, we encrypt our website, encrypt video calls, encrypt our database at rest and in-transit, utilize firewalls, limit ports, limit sensitive data, salt and hash passwords, conduct regular penetration testing, limit who on our team has access to data, and regularly improve our security.
In other words, there are many security layers in place and even if someone were able to get through all of them and into our database, they wouldn't be able to access the information because it's encrypted.
Updated on: 09/01/2023
Thank you!