Like every business in Europe, here at Nimbus we’ve been planning for the introduction of the EU’s General Data Protection Regulations, or GDPR.
We take the privacy of our users’ data very seriously and in many cases were already meeting our obligations. Regardless, we’ve done a full review and are in the process of tightening processes and procedures to ensure that our use of your data is as secure and transparent as possible. This page will take you through a few of the steps that we have already taken, as well as a glimpse at the future of data privacy at Nimbus.
What is GDPR?
GDPR stands for General Data Protection Regulation and is an EU law that comes into force on May 25th 2018. It is designed to make it easier for you to understand what data companies are holding about you and to strengthen your rights around changing and deleting data companies hold on you.
There are three main elements to GDPR that you should know about:
Any data we collect must have your clear consent
Any data we collect must be kept safe and secure
You have the right to: update, delete, transfer and access your data at any time as well as object to how we are using it.
Your Personal Data
Nimbus does not sell your data to third parties at any time. We collect your name, email, company and phone number on signup to allow us to contact you with support, training, and news. You can unsubscribe from our emailing list at any time using the ‘unsubscribe’ link at the bottom of all our emails.
Currently should you wish to no longer receive platform updates or other emails from us, you can contact via email at email@example.com or through the in-app messenger. Though we plan to allow full, fine grained, self service of data privacy preferences and other account settings through the Manage Account section shortly.
We also track some basic elements of how you use our platform such as which features you use, when you login, and which HMLR polygons, OS Master Map sections, and AddressBase addresses you look at. The usage data is used to improve the usability and functionality of Nimbus Maps and to provide bespoke training in-app through our messenger. The HMLR and OS data capture is a requirement of our licensing and ensures we pay the correct royalties for the data you use.
Usage data is core to our business and Nimbus Maps is not able to function without it, as such by continuing to use the platform and by agreeing to our terms and conditions, you agree to its collection. Rest assured that this data is used in aggregate and anonymised before it is sent to our licensing partners and only used in house for product development. We do not sell your data to any third party.
Third Party Processors
We use third party software to manage our customer relations, including CRM software, the in-app Intercom messenger, email marketing software, and accounting software. We only store data you have provided and contact you have with Nimbus. All of our providers have given us a GDPR compliance statement and any data held within these systems is covered by your rights to know what we hold and amend or delete it. Any request to invoke these rights for any Nimbus data will include third party processor data as well.
Should you have any questions about GDPR compliance, or want to exercise any of your data subject rights, for now just drop us an email at firstname.lastname@example.org and keep an eye out for platform improvements that make it even easier to manage your data with Nimbus.