As of May 25, 2018, the European Union (EU) is replacing the 1995 Data Protection Directive with General Data Protection Regulation (GDPR). GDPR give individuals in the EU more control over how their data is used and places certain obligations on businesses that process information of those individuals. It lays out the principles for data management and the rights of individuals, while also imposing fines on those who do not comply. GDPR aims primarily to give individuals a little more control over their personal data online.
There are two categories that the GDPR recognizes: (1) data controllers and (2) data processors. JVZoo falls under the data controller category and our Sellers and Affiliates fall under the data processor category. Although the entire scope of the GDPR regulations is quite complicated, there are 6 main regulations/rights that the GDPR will require and enforce. The regulations are as follows:
| GDPR Regulation | How It Affects Users | How To Comply |
| Right of Access | Customers can access and review their personal data | JVZoo has made it possible for customers to view their personal data at any time. Click here to see how. |
| Right to Rectification | Customers can view and alter their personal data | JVZoo has made it possible for customers to edit their personal data at any time. Click here to see how. |
| Right of Erasure | Sellers can search for and delete all personal data of their customers | JVZoo has made is possible for Sellers to delete an individual’s personal data upon request. To request that a Seller delete your personal data, you must send a written notice to the Vendor, not to JVZoo. |
| Right to Restrict Processing | Customers can “lock” their personal data and restrict processing of their personal data | JVZoo has made it possible for customers to lock their personal data at any time. Click here to see how. |
| Right to Data Portability | Customers can export their personal data | JVZoo has made it possible for customers to export their personal data at any time. Click here to see how. |
| Right to Be Informed | Users will be notified if there are any security breaches affecting their personal data | JVZoo will notify its users if there is a security breach. |
JVZoo has implemented changes in the system to allow Sellers and Affiliates to be compliant with each of these rights and Customers to have access to these rights.
In addition, JVZoo has taken steps to ensure that we are all properly prepared for GDPR. These steps include the following:
- Working with VeraSafe, a third party Privacy & Web Security Solution that specializes in EU and US Privacy Shields (Changes listed in both JVZoo’s Privacy Policy, Section XI and in our Terms of Service, Section IX)
- Appointing an Article 27 EU Representative (Changes listed in both JVZoo’s Privacy Policy, Section XI and in our Terms of Service, Section IX)
- Providing a Data Processing Addendum for all our sellers, partners, and required parties (Section 20 of JVZoo’s Seller Agreement)
For more information on GDPR as a Seller or Affiliate, please see the following Knowledge Base article: Complying with The General Data Protection Regulation (GDPR).
For more information on the GDPR law, click here.
DISCLAIMER: Neither JVZoo nor any employee or representative of the Company is an expert on GDPR regulations. It is recommended that you speak with your accountant and counsel to ensure you're protecting your business.