PushAlert GDPR Compliance – Product and Policy Updates

PushAlert GDPR Product and Policy Updates

PushAlert GDPR Product and Policy Updates

We at PushAlert have always valued customer privacy and data security above all else. We are fully committed to GDPR compliance and also helping our partners and customers on their road to compliance. Our business, operations and legal teams have been working hand-in-hand to ensure that we are up to date on the GDPR and its provisions. Whether you are in the EU or not, we want to make it easier for you to comply with the GDPR.

Some of the major changes coming to PushAlert include updating our legal terms and privacy policy to limit access to data stored from EU users. All these updates will be published before the May 25th deadline.

Current features and upcoming product changes:

  • Anonymize IP address: By default, PushAlert will now capture only the first three octets of the IP address to ensure that these are rendered completely anonymous.
  • Consent: Web Push Notifications already require website visitors to give explicit consent by turning on the browser-level permission.
  • Subscriber data: After accepting to receive notifications, the push notification service of the browser creates a randomly generated ID for the subscriber. This ID cannot be used to identify a particular individual.
  • Data Deletion: PushAlert automatically deletes data on expired endpoints and customers have complete control over their data. They can unsubscribe at any time from their browser and their data would be deleted from our systems.
  • Data Retention: Our users can use the account features to remove or update their data. We have also decreased our data retention time of deleted data to 72 hours.
  • Privacy settings: We will be adding a new privacy settings page inside every PushAlert account which gives you full control over your account access.
  • Updating our user data exporting capabilities to make it easier to search for and export specific user data from PushAlert. This will help our clients meet individual user requests for restriction, erasure, and data portability.

In addition to the product changes, we’ve taken steps internally to ensure that all data sent to PushAlert is stored securely. These steps include auditing our service for security vulnerabilities and ensuring we employ the best security practices to prevent unauthorized access to our servers.

We have a roadmap of changes coming to PushAlert in the coming days, which you can follow here.

Please feel free to reach out to us if you have any questions on GDPR on gdpr-compliance@pushalert.co

Abhinav Pathak