The General Data Protection Regulation (GDPR) is a legal framework established by the European Union to standardize data regulation across Europe and give consumers greater control over their personal data. It is an enhanced version of the previous Data Protection Directive.

The primary objective of the GDPR is to protect the privacy rights of EU citizens, particularly their right to be forgotten the right to request organizations to identify and remove any personal data they hold.

This guide outlines how Salehours is preparing for GDPR compliance and offers an overview of the new requirements to help your business ensure readiness for GDPR.

Salehours Commitment to Protecting Personal Data

As a data processor accountable for safeguarding customer data, Salehours has updated its platform to ensure procedures are in place to protect Personal Data from any unauthorized access, theft, loss, leakage, or sharing. We will obtain your explicit consent before collecting any personal information

What Should You Do to Prepare?

If your business operates within the European Union (EU) or processes the personal data of EU citizens, GDPR directly impacts you.

The GDPR mandates that you obtain freely given, specific, informed, and unambiguous consent from individuals before collecting their personal data. You must clearly state how you intend to use their data.

For businesses serving customers within the EU, it is your responsibility to seek their consent for storing personal details and obtain their permission before sending follow-up marketing or promotional communications through Salehours platform. Based on customer preferences, you can decide the extent of details you wish to store for each individual. We recommend consulting legal counsel to guide your GDPR preparations.

Salehours GDPR-Compliant Features

We have made several updates to ensure compliance with GDPR, effective from March 25, 2018. These updates are designed to assist you in meeting GDPR requirements and include:

• Customer Registration Process: For EU-based customers, consent is required for data processing during registration.
• Data Recording for Salehours Users: Businesses using Salehours must obtain customers consent before recording their data.
• Edit or Forget Rights for End Customers: Customers can request their information be updated or permanently deleted from Salehours system.

The following sections of our platform have been updated to reflect GDPR requirements:

• Customer Management
• Sales and Invoicing
• Inventory Management
• Public API
• Booking Widgets
• Customizable Data Processing Widgets

Upon customer consent to be forgotten, Salehours will remove the individual’s records and adjust relevant business statistics reports to reflect anonymized data, ensuring that overall analytics remain accurate.

Customer Rights

Under GDPR, Salehours users (like your business) are considered “Data Controllers.” If you serve customers within the EU, and their data is recorded in Salehours, you must uphold the following rights:

• Right to be Informed: Individuals have the right to know how their data is being processed.
• Right to Rectification: Individuals can request corrections to their data if it is inaccurate or incomplete.
• Right to be Forgotten: Individuals can request the deletion of their personal data from Salehours systems.
• Right to Object: Individuals can object to the use of their data for profiling or direct marketing.
• Right to Restrict Processing: Individuals may request that their data be stored but not processed.
• Right to Data Portability: Individuals have the right to request a copy of their personal data in a readable format.

Salehours will continue updating and refining our GDPR compliance features as part of our commitment to protecting your customers’ data while keeping your business compliant.