What does the GDPR mean for me as a TinyMDM customer?
What is GDPR?
The GDPR is a groundbreaking data protection law that has been created to protect consumers and their personal data. It has replaced the older EU directive on data protection, reinforcing individuals’ rights and defining how businesses and individuals can gather, store, transfer, use and delete people’s personal data. As a TinyMDM customer, you can request to have your personal information exported or deleted and/or to have your account deleted.
What is personal data?
The term ‘personal data’ is the entryway to the application of the General Data Protection Regulation (GDPR). Only if a processing of data concerns personal data, the General Data Protection Regulation applies. Personal data are any information which are related to an identified or identifiable natural person (Art. 4 GDPR).
The data subjects are identifiable if they can be directly or indirectly identified, especially by reference to an identifier such as a name, an identification number, location data, an online identifier or one of several special characteristics, which expresses the physical, physiological, genetic, mental, commercial, cultural or social identity of these natural persons. In practice, these also include all data which are or can be assigned to a person in any kind of way.
What steps has Ars Nova Systems taken to comply with the GDPR?
Data protection and user privacy are essential in Mobile Device Management and those preoccupations are at the center of our daily mission. We at Ars Nova Systems had worked hard to provide our customers with a GDPR compliant platform for managing their mobile devices. At any time, when requested by an account holder, tinymdm.net, tinymdm.fr, and other TinyMDM B2B services will, within 30 (thirty) days :
Support their request to export their user data.
Delete a customer’s data.
Update a customer’s data.
Delete their account.
We also engage ourselves to notify our customers of any breaches leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to personal data within 72 (seventy-two) hours after becoming aware of it (Art. 33 GDPR), unless the breach is unlikely to result in a risk to the rights and freedoms or natural persons.
What information do we collect about you and what do we do with it?
We will never disclose any of the private information you have submitted without your consent. Your personal data will be used only for invoicing, payment, email service of the Platform purpose (in this case your information might be used with third party software that guarantee the respect of your confidentiality).
Information submitted to TinyMDM will be transferred to its servers for processing. The information may remain on TinyMDM servers, to help TinyMDM to improve its service. Ars Nova Systems maintains a record or processing activities under its responsibility (Art.33 GDPR).
How do I request my customer data be removed from TinyMDM?
According to the GDPR, personal data must be erased immediately where the data are no longer needed for their original processing purpose, or the data subject has withdrawn his consent and there is no other legal ground for processing (Art.17 GDPR).
To delete your account, please visit the dashboard, go to my Account, and click on Delete my account. To request the erasure of your data, make a written demand and send it to grpd[at]arsnovasystems.com. If no exemption applies, we will take steps within one month to ensure erasure from backup systems as well as live systems. If we have doubt about the identity of the person making the request, we will ask more information.
Where is my personal information stored on TinyMDM?
TinyMDM and related sites use Amazon Web Services for database storage. You can read about AWS’s data protection regulations here.
Where can I learn more about the GDPR?
An official overview of GDPR is available at gdpr.eu.
If you have specific questions about GDPR, please contact us at:
ARS NOVA SYSTEMS 9 rue des Olivettes 44000 NANTES FRANCE Or send an email to gdpr[at]arsnovasystems.com