For GDPR we need to add a privacy statement on the registration form but unless it's in the body of the information it can't be added to the questions area and made compulsory because none of the question boxes allow enough words. Any suggestions?
Edited and updated solution.
Can you create a FAQ for GDPR so that you can answer all our questions?
Hi @Ergin Erdemir,
I have spoken with our product team and they have informed me that GoToWebinar's existing registration flow already meets the minimum GDPR requirements. We understand that some of our customers want additional flexibility with registration, so we are working on introducing additional customization options. As changes are finalized the documentation will be added to https://www.logmeininc.com/gdpr/gdpr-compliance for everyone to review.
Thanks for your reply. I understand that GoToWebinar's existing registration flow already meets the minimum GDPR requirement but, it doesn't with ours. As an FCA regulated online broker, we'd need to implement a checkbox into registration flow where users has to tick the checkbox to be able to complete their registration.
Can you please share the customisation options that you're working on at the moment, is adding a checkbox part of the customisation options?
I do not have those details yet, ss changes are finalized the documentation will be added to https://www.logmeininc.com/gdpr/gdpr-compliance for everyone to review.
As I mentioned previously, your registration workflow do not meet with our GDPR requirements and it's so important for us to be compliant. When should we expect to see the fianlised changes and do you think our request (adding a check box) will be added?
Do you have a DCs in Europe?
We also do not like not being able to delete the previous webinar's data such as names and e-mail addresses. We have from 2015 and earlier. This is against the GDPR requirements.
Some key GDPR principles to consider in implementation include:
Q) Does the GDPR stop a company from storing information outside of the EU?
A) No, there is nothing in the GDPR text that prevents or suggests this requirement. The GDPR does outline that Data Processors must protect personal data appropriately, regardless of where it is stored. Further, the GDPR does not invalidate or override the EU Model Clauses or the EU-U.S. Privacy Shield Framework, which are both legally valid mechanisms to ensure the legal transfer of personal data into and out of the EU.