Your account data is stored in the USA. Have you reviewed our GOTO COLLABORATION SUITE - SECURITY AND PRIVACY OPERATIONAL CONTROLS doc?
I am brining an old question to life now that we have had GDPR in our lives for almost a year.
Have you understood it so that asking a registrant to check a box "I agree to.." make using the data for said purpose (contact them ahead for instance) ok?
I guess some of you share your registration data with for instance a sponsor of the webinar - do you write DPA/GDPR agree ments with them? What does the check box text look like and is it in your understanding so that that is enough?
I had a conversation about the check box - you cannot register unless checking it and that that would be ok - it is not a human right to watch a webinar right? I can not see any other way of asking for permission to collect and share registration data?
What do You do as of date?
I do not believe this resolves the GDPR needs,
as reports that have to manage incoming requests from customer to show them what date we have, and if wanted, delete them
date back one year; but when I look into my Webinar's history, I see event details back for a couple of years;
so data is still at LMI Server, but not visible for our GDPR Team when dealing with incoming requests, as they simply do not see that far back as the G2W license owner
How to adress that?
Hi @Tho-Mas ,
We effectively delete GoToWebinar reporting data after 365 days. There may be a record of your webinar history for analytical purposes, but the actual Attendee data would be gone after 1 year.
thanks getting back to me; in fact I looked today into my Webinar "past events" where there are entries back to 2014, and looking into the one from DEC 12, 2014 I see all mail addresses from Registrants
So, how comes?
so, there IS Personal Information data stored at your end and I cannot report on that when older than a year!
How can I then handle incoming GDPR requests when customers asking for a verification whether we have any PI related data stored or not (and we are accountable for that, even LMI stores that) ?
What process does LMI have in mind when declaring to be full GDPR compliant with GoToSuite products?
@Tho-Mas If at any time you need data deleted before the advance of your end-of-contract, or end-of-year, you may contact Customer Care by telephone in order to specify the affected webinars and organizer account.