GDPR Compliance
How SMSPro Solutions complies with the General Data Protection Regulation
1. Our Commitment to GDPR
SMSPro Solutions is fully committed to GDPR compliance. We have implemented comprehensive measures to protect EU citizens' data rights and ensure lawful processing of personal information.
2. Data Protection Principles
Lawfulness & Transparency
We process data lawfully, fairly, and transparently
Purpose Limitation
Data collected for specific, legitimate purposes only
Data Minimization
We collect only necessary data
Accuracy
Data is kept accurate and up-to-date
Storage Limitation
Data retained only as long as necessary
Security
Appropriate technical and organizational measures
3. Your GDPR Rights
As a data subject, you have the following rights:
- Right to Access: Request copies of your personal data
- Right to Rectification: Correct inaccurate information
- Right to Erasure: Request deletion of your data
- Right to Restrict Processing: Limit how we use your data
- Right to Data Portability: Receive your data in a structured format
- Right to Object: Object to certain processing activities
- Rights Related to Automated Decision-Making: Not be subject to solely automated decisions
4. Legal Basis for Processing
We process personal data based on:
- Contract Performance: Necessary to provide our services
- Legitimate Interests: For business operations and improvements
- Consent: For marketing communications (withdrawable anytime)
- Legal Obligation: To comply with laws and regulations
5. Data Security Measures
We implement robust security including:
- End-to-end encryption (TLS 1.3)
- Regular security audits and penetration testing
- ISO 27001 certified infrastructure
- Employee training on data protection
- Incident response procedures
6. Data Processing Agreements
For business customers, we provide Data Processing Agreements (DPAs) that outline:
- Nature and purpose of processing
- Types of personal data and data subjects
- Obligations and rights of both parties
- Security measures and breach notification procedures
7. International Data Transfers
When transferring data outside the EU, we use:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Binding Corporate Rules where applicable
8. Data Breach Notification
In the event of a data breach, we will:
- Notify supervisory authorities within 72 hours
- Inform affected individuals without undue delay
- Document the breach and our response
9. Data Protection Officer
Our Data Protection Officer oversees GDPR compliance. Contact:
Email: dpo@smsprosolutions.com
Address: Data Protection Officer, SMSPro Solutions, 123 SMS Boulevard, Suite 500, San Francisco, CA 94105
10. Supervisory Authority
You have the right to lodge a complaint with your local supervisory authority if you believe we have not complied with GDPR.
11. Exercise Your Rights
To exercise any GDPR rights:
- Email us at privacy@smsprosolutions.com
- Log into your account dashboard
- Contact our support team
We will respond to requests within 30 days.