Payment Rails (Trolley since Dec 2021) is committed to transparency and privacy. As part of the EU’s new data protection law, the General Data Protection Regulation (“GDPR”), taking effect May 25, 2018, we have made a number of updates to our privacy policy and terms of use.
A short summary of our changes:
1. Privacy Policy and Terms of Use updates: GDPR places new obligations on organizations that process EU personal data. As a result, we updated our business practices, Privacy Policy, and Terms of Use to better explain our clients’ and users’ rights. We have also added a Cookie Notice.
In addition, we have added a new Privacy Policy (EU) and Terms of Use (EU) for our European clients in preparation for our soon-to-be-announced expansion to Europe. More news coming soon.
2. Improved clarity and transparency: As a key part of GDPR compliance, we’ve made our Privacy Policy easier to understand, and described our data processing practices in clear, easy-to-understand language.
3. Data Protection Agreement Addendum: We’ve prepared a GDPR-compliant Data Protection Agreement Addendum (“DPA”) for our existing clients, this is an addendum to the existing Terms of Use agreement and confirms the data controller and data processor responsibilities with our clients. We are currently communicating with our existing clients to ensure suitable DPA agreements are in place between our companies. We will be in touch very shortly if you have not yet heard from us on this.
4. Data Protection Officer
As part of our GDPR commitment, we have appointed a Data Protection Officer (DPO) and a Deputy Data Protection Officer who are responsible for ensuring GDPR compliance.
5. GDPR Training
Privacy and data protection is everyone’s responsibility! This is why all Trolley employees have received GDPR and Data Protection training provided by our friends at Frisk Online.
We hope this makes your use of Trolley and the transition to GDPR much easier. Have a wonderful and happy GDPR day!
