GDPR

UMS' commitment to the GDPR (General Data Protection Regulation)

Our company, deals with personal data, either directly or on behalf of our customers. We are dependent on the confidence of our customers and end users so protecting the data of our customers and ensuring the privacy of end users is therefore a core element of our business.

This policy ensures that UMS:

  • Complies with data protection laws in the countries where we operate
  • Protects the rights of staff, partners, customers and citizens
  • Is open about how it stores and processes personal data
  • Protects itself from the risk of a data breach

Here is an overview of our GDPR roadmap

Researched and identified all products and business areas affected by GDPR


Aug 2017
Updated UMS policy on data protection and privacy for GDPR compliancy


Nov 2017
Published privacy statement


Dec 2017
Appointed Data Protection Officer


Nov 2017
Documented all privacy data types (PII) in UMS, including purpose and legal basis


Aug 2017
Established routines for handling requests for access from data subjects


Oct 2017
Implement, test and deploy all necessary changes to UMS products based on GDPR requirements


Feb 2018
Rewritten the standard UMS data processor agreement


Nov 2017
Signed data processor agreements with partners & vendors


Apr 2018
Signed data processor agreements with customers


Apr 2018
Defined control mechanisms for data protection and privacy


Feb 2018
Defined and performed privacy impact assessment (PIA)


Feb 2018
Finalize and communicate full compliance with GDPR


May 2018

Read more about GDPR here.