GDPR
GDPR Overview
On May 25, 2018, the General Data Protection Regulation (GDPR) became enforceable across the European Union. GDPR is one of the world’s most robust frameworks for data protection and privacy.
At Zykrr, we are committed to upholding the privacy of individuals, including our customers, their employees, and survey participants. You can access the full legal text of the regulation here.
Zykrr’s Role Under GDPR
- Zykrr acts as a data processor under GDPR.
- Our customers act as data controllers, and they determine:
- What data is collected
- From whom and for what purpose
- Where it is collected and how long it is retained
Zykrr delivers its services as a self-service or assisted SaaS platform, accessed via web browser. All data is processed only under the customer’s instructions. Zykrr does not classify or analyze customer data except as required for system operations.
Related Documentation
Responsibilities Under GDPR
GDPR mandates shared but clearly delineated responsibilities between processors and controllers. Zykrr enables compliance, but legal responsibility for lawful collection and handling remains with the customer.
| Activity | Responsibility |
|---|---|
| Breach Notification Standards | Shared |
| Data Security & Processing Standards | Zykrr |
| Obtaining Explicit Consent | Customer |
| Handling Consent Withdrawal / Data Deletion Requests | Customer |
| Parental Consent for Minors | Customer |
| Transfer Only to Countries with Adequate Protection | Zykrr |
| Cross-Border Transfer of PII | Shared |
| Publishing a Public Privacy Notice | Customer |
| Responding to DPA Inquiries | Shared |
| Enabling Data Modification / Right to Be Forgotten | Customer |
| Data Portability | Customer |
| Handling Data Subject Rights (Access, Notice, Objection) | Customer |
| Defining Controller vs. Processor Roles | Shared |
| Data Breach Notification | Shared |
| Collecting Data for Specific, Explicit, Legitimate Purposes | Customer |
* While Zykrr enables functionality to fulfill these rights, it performs data erasure directly only under customer instruction or if legally required by court or government order.
Need Help?
Zykrr provides secure infrastructure, audit logging, access controls, consent tagging, and data export/delete tools.
For GDPR-related support or documentation, contact your Customer Success Manager or email us at support@zykrr.com.