Alt Legal and GDPR Compliance
On May 25, 2018, the European Union “General Data Protection Regulation” (GDPR) came into effect replacing the European Data Protective Directive 95/46/EC. It unified legislation regarding the use and management of personal data and standardized and increased privacy protections for personal data of EU individuals.
Alt Legal’s GDPR Compliance
Our employees receive annual training on GDPR and privacy compliance. We have also completed internal data mapping processes, privacy impact assessments, and implemented strict information security and data protection policies, including incident response procedures, to ensure that any we identify, report, and resolve potential security events and data breaches as soon as possible. Alt Legal also regularly reviews its vendor agreements and data protection agreements with its vendors. If you would like details about our sub-processors, a copy of our data protection agreement, or would like to delete your data, you can email our team at email@example.com, live chat at www.altlegal.com, or by calling us at +1-646-665-7975. With respect to data deletion, we will promptly remove your data after any required processing is completed, any legally binding retention requirements have been satisfied, and all parties associated with that data have agreed to its deletion.
For our customers subject to the GDPR, we acknowledge our role as a data processor, and Alt Legal will continue to fulfill that role and provide the tools and support necessary for our customers subject to the GDPR to meet their responsibilities as data controllers.
Our Approach to Security
Our communication with our services uses TLS 1.2 or greater. We encrypt your data in transit and at rest using SHA-256 and 2048 bit keys and back it up at least daily. Our application is constantly updated to address any newly-discovered vulnerabilities and threats.