Meeting Room 365 and the GDPR

Privacy and Security Contact

James Futhey
[email protected]

440 N Barranca Ave #3659
Covina, CA 91723

As part of our ongoing efforts to protect the security and privacy of our users, we are working to meet or exceed the GDPR (General Data Protection Regulation). This site contains information on what steps we are taking, their progress, and who to contact for any security concerns.
Please see our FAQ for more information.

Make a Data Request

We respect the rights of individuals to know how their data is being used, export it or request that it be deleted.

Data Processing Partners

We rely on a number of trusted 3rd parties to assist with our operations. Depending on the exact nature of your account and what you've requested we do, your data may be shared with one of these partners. We carefully evaluate each to make sure they're handling your personal data with the utmost of respect, security, and privacy.

Partner Locale Data Shared Purpose
Cloudflare United States
IP Address
Automatically optimizes the delivery of your web pages so your visitors get the fastest page load times and best performance.
Cookiebot United States
IP Address
Cookie consent widget.
Crisp United States
IP Address
Multi-channel customer support platform for startups and SMBs.
Digital Ocean United States
IP Address
SSD VPS hosting environment.
Google Analytics United States
IP Address
Google Analytics offers a host of compelling features and benefits for everyone from senior executives and advertising and marketing professionals to site owners and content developers.
Headway United States
IP Address
In product widget to keep customers up to date on changes.
Hotjar United States
IP Address
A heatmap, survey, feedback and funnel application.
Stripe United States
IP Address
Stripe makes it easy for developers to accept credit cards on the web.

Compliance Tasks

GDPR Compliance requires maintenance and ongoing work. We are tracking our efforts here.

Name Status
SSL (TLS) Deployed on App Site
Restrict Personal Data at Signup to the Minimum Necessary
Redact Logs from Writing Unneeded Personal or Sensitive Data
Ensure internal employees and contractors behaviors around personal data are documented
Ensure Access to Backups is Restricted
Ensure Web Application Firewall enabled and blocking common attacks
Name Status
SSL (TLS) Deployed on Marketing Site
Name Status
Get Management Approval for GDPR Efforts
Nominate a Data Protection Lead or Data Protection
Process established for subject data requests
Procedure established to allow for people to request that inaccuracies in their data are fixed
Name Status
Publish statement on public website on how to report security and data issues

Frequently Asked Questions

If you have any concerns not answered here, please reach out to our contact (listed above) and we'll be happy to assist.

Do Non EU Companies need to comply with the GDPR?

While it remains to be seen if the EU has the legislative power to levy fines and enforcement against organizations around the globe, GDPR compliance is being sought by non EU companies for a variety of reasons.

  • Customers and Prospects are making it a requirement
  • It's a solid framework for improving the handling of personal information and complying with the GDPR requirements improves our own security.

How Do I Report a Security Issue?

We take all security reports seriously. Please email our security contact (information listed above) with any information you have regarding any potential data breaches, vulnerabilities or concerns.

What's the GDPR?

The General Data Protection Regulation (GDPR) is a new piece of privacy legislation enacted by the European Union. It represents a significant change in how personal (IP Addresses, Emails, Names) and sensitive (religion, ethnic origin, health, orientation) data is handled by companies.

Is there a DPA?

No. Smaller companies under 250 employees are required to comply with the GDPR only if they process personal or sensitive overseas data on a regular basis. We do not process or store data on EU customers outside the EU. We list each provider who may see analytics or customer support data, and only choose those providers which can be GDPR compliant for our EU customers.

Copyright © Meeting Room 365 2020 - 2024. All Rights Reserved.