Conductor Software’s
GDPR Compliance

The European Union's General Data Protection Regulation (GDPR) approved and adopted by the EU Parliament in April 2016 aims to give control to EU citizens and residents over their personal data, and to simplify the regulatory environment for international business by unifying the regulation within the EU.

The security of your personal information is very important to us. All your data is private and confidential and we take reasonable steps to ensure that your personal information is handled securely and in accordance with our Privacy Policy. We actively follow up-to-date and generally accepted security standards, to protect the personal information submitted to us, both during transmission and once it is received.

Conductor Software complies with the European Union’s General Data Protection Regulation. We are also actively working to adopt the accreditation standard, the ISO 27001. Support of these standards means that:

• We design our processes and software according to ‘privacy by design’ and ‘privacy by default’ principles.

• We obtain consent before receiving any personally identifiable information and we make it easy for individuals to opt-out.

• We receive very little personally identifiable information—we try to restrict this solely to the email address—and we remove it from our systems as soon as practically possible i.e. within days of receiving it.

• All data that we handle is encrypted in transit, encrypted at rest, and anonymized.

• We comply with rules regarding international data transfers.

• We use the world’s most secure platforms and partners and we require that they comply with GDPR.

We are here to help

We can provide further details about categories of data, assistance in facilitating deletion of data subjects, and discuss the impact of such deletions.

If a data breach does occur, Conductor Software is ready to respond in accordance with the GDPR.

GDPR and Third-Party Services

Conductor uses sub-processors to assist in providing Conductor’s services. A sub-processor is a third party data processor engaged by Conductor who agrees to receive data from Conductor intended for processing activities to be carried out (i) on behalf of Conductor customers; (ii) in accordance with customer instructions as communicated by Conductor; and (iii) in accordance with the terms of a written contract between Conductor and the sub-processor.

Any third-party service provider utilised by Conductor Software will only be given access to Customer Data as is reasonably necessary to provide the Services and will be subject to confidentiality obligations which are substantially consistent with the standards described in our Terms of Service.