Effective: August 30, 2023
The GDPR is the most comprehensive EU data privacy law in decades, and it went into effect on May 25, 2018.
Besides strengthening and standardizing user data privacy across the EU nations, it requires specific obligations on all organizations that handle EU citizens' personal data, regardless of where the organizations themselves are located. On this page, we'll explain our methods and plans to achieve GDPR compliance, both for ourselves and for our customers.
The GDPR's updated requirements are significant and our team is working diligently to keep Frame's product offerings and contractual commitments in line. Measures to achieve this include:
We'll also continue to monitor the guidance around GDPR compliance from privacy-related regulatory bodies, and will adjust our plans accordingly if it changes.
Protecting our customers' information and their users' privacy is extremely important to us.
Frame has invested heavily in building a robust infrastructure and team, one that can handle a variety of issues — everything from threat detection to building new tools. In accordance with GDPR requirements around security incident notifications, Frame will continue to meet its obligations and offer contractual assurances.
If you'd like to learn more about Frame's security policies and procedures, please see our Security Overview.
Many Frame Contexts on Third Party Platforms have built tools to help them comply with the GDPR. Frame will continue working to build tools as well. In the meantime, Frame will continue to meet its obligations on a Customer's behalf following a request.
Fulfilling our privacy and data security commitments is important to us. This page will be revised to reflect GDPR-related information as it becomes available.