Our Commitment to GDPR
EngageSlide is fully committed to aligning with the requirements of the General Data Protection Regulation (GDPR) to ensure the personal data of our customers and their audiences is handled securely and responsibly. We act as a Data Processor on your behalf, providing you with the necessary tools to remain compliant when collecting attendee data.
We do not sell personal data, nor do we use the data collected in your presentations for our own marketing purposes.
Data Processing & Sub-processors
To provide you with a reliable and high-performing interactive presentation platform, we utilize a carefully selected set of sub-processors. All our sub-processors undergo strict security reviews and are bound by Data Processing Agreements (DPAs) that ensure they meet GDPR standards.
Core Sub-processors
| Sub-processor | Purpose of Processing | Location |
|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure hosting (servers, databases, and media storage) | United States / European Union |
| Stripe | Secure payment processing and subscription management | United States |
| OpenAI | Powering our EngageSlide AI features for content generation | United States |
Security Measures
Security is deeply integrated into our culture and architecture. We employ comprehensive technical and organizational measures (TOMs) to safeguard your data against unauthorized access, alteration, disclosure, or destruction.
- Encryption: All data is encrypted in transit using TLS 1.2+ (Transport Layer Security) and at rest using industry-standard AES-256 encryption.
- Access Control: Strict role-based access control (RBAC) ensures our staff only accesses infrastructure necessary for their direct responsibilities.
- Vulnerability Management: Continuous monitoring and regular vulnerability scanning to proactively address potential threats.
- Data Backups: Automated daily backups with geo-redundancy to ensure high availability and prevent data loss.
Data Subject Rights
Under the GDPR, individuals located in the EU and UK have specific rights regarding their personal data. EngageSlide provides built-in tools and processes to help our customers (the Data Controllers) fulfill these rights:
- Right to Access: Users can request a copy of the personal data processed by EngageSlide.
- Right to Rectification: Users can edit their account details or request corrections to inaccurate data.
- Right to Erasure (Right to be Forgotten): Users can delete their accounts entirely, which permanently erases associated presentations and audience data.
- Right to Data Portability: Presentation data and analytics can be exported to standard formats (Excel, PDF).
Contact Our Privacy Team
If you have questions about this GDPR Transparency Statement, wish to report a security vulnerability, or need assistance exercising your privacy rights, please contact our Data Protection Officer (DPO).
Email: hi@engageslide.com
We aim to respond to all privacy-related inquiries within 30 days.