BulkSMS is GDPR ready

Friday, 25 May 2018 is when the European Union's General Data Protection Regulations (GDPR) come into effect. BulkSMS.com, which acts as both a data controller (in that it processes client data) and a data processor (in delivering an SMS messaging service on behalf of its client) can confidently report it is GDPR ready.

BulkSMS.com would like to assure its clients in the European Union member states (and this includes clients in the United Kingdom until Brexit comes into effect), as well as its clients outside of the EU that send SMS communications to message recipients who are in the EU, that the company has prioritised data protection and has the operational processes and technical systems in place for processing personal data.

More specifically, BulkSMS.com has updated its terms and conditions to include its Data Protection Addendum (DPA) to meet the requirements of article 28 of the GDPR. The DPA includes the Standard Contractual Clauses (see Annexure 2 of the DPA) necessary for agreeing to the secure cross-border transfer of personal data from a country in the European Economic Area to a third country. In BulkSMS's case, the company provides customer support and undertakes system backups in its head office, based in South Africa. The company also has a server located in Ireland and an office in the United Kingdom, which further supports the provision of its SMS messaging services.

To help clients navigate the BulkSMS.com Web site, the company has created a GDPR page that offers all GDPR resources. This page includes access to the company's agreements (the Data Protection Addendum and the Standard Contractual Clauses), a GDPR compliance white paper, a GDPR infographic, and the company's GDPR updates published to the BulkSMS.com Web site.

For more information about BulkSMS's GDPR readiness, please contact the company's Data Protection Officer, Dr Pieter Streicher: Managing Director, BulkSMS.com at [email protected].