Web2Chat Help center
All Collections
Privacy & Terms
Web2Chat and GDPR Compliance
Web2Chat and GDPR Compliance

Find out how Web2Chat complies with GDPR.

Avatar of tanazmasaba06
Written by tanazmasaba06
Last updated Jan 29, 2025
At Web2Chat, we are committed to upholding the principles of the General Data Protection Regulation (GDPR) and ensuring that our platform helps businesses comply with these requirements. The GDPR is a data privacy regulation designed to protect the personal data of individuals in the European Union (EU) and grant them greater control over their information.
Below we outline how Web2Chat supports GDPR compliance and the tools available to help you manage your data responsibilities.

What Is GDPR?

The GDPR grants individuals in the EU the following key rights regarding their personal data:
  1. Right to Access: The right to know what data is being collected and how it’s processed.
  2. Right to Rectification: The right to correct inaccurate or incomplete data.
  3. Right to Erasure: The right to request the deletion of personal data ("Right to be Forgotten").
  4. Right to Restrict Processing: The right to limit how data is used.
  5. Right to Data Portability: The right to transfer data to another service provider.
  6. Right to Object: The right to object to data processing, including for marketing purposes.
For detailed information on GDPR, visit the official EU GDPR website.

How Web2Chat Supports GDPR Compliance

Web2Chat acts as a data processor, handling personal data on behalf of our customers (data controllers). To help you comply with GDPR, Web2Chat provides a range of features and safeguards:

1. Managing Data Access Requests

Web2Chat enables you to respond to user requests for accessing their personal data:
  • Export User Data:Navigate to Contacts in your Web2Chat dashboard, locate the user, and click Export Data to generate a file containing their personal information.
  • Data Transparency:Use Web2Chat’s Messenger to inform users about the data you collect and how it is used.

2. Handling Data Deletion Requests

When a user requests the deletion of their data, Web2Chat ensures that you can comply efficiently:
  • Go to the user’s profile in Contacts.
  • Select Delete User, and their personal data will be permanently removed.
  • Ensure that any integrations also comply with deletion requests.
Note: Deletion requests do not affect anonymized or aggregated data used for analytics.

3. Consent Management

Web2Chat helps you collect and manage user consent:
  • Customizable Messenger: Add consent requests for cookies, marketing communications, or other data processing directly in the Messenger.
  • Proactive Messages: Inform users about your privacy policy and obtain consent for specific actions.

4. Data Portability

Web2Chat supports the right to data portability by allowing you to export user data in machine-readable formats like CSV or JSON, making it easy to transfer information to other service providers.

5. Data Processing Agreement (DPA)

Web2Chat offers a Data Processing Agreement (DPA) that outlines how we process and protect personal data on behalf of our customers. You can request a copy of the DPA by contacting Web2Chat support.

Security Measures for GDPR Compliance

To protect personal data, Web2Chat employs robust security practices:
  • Data Encryption: All data is encrypted both in transit (TLS) and at rest (AES-256).
  • Access Controls: Role-based access control (RBAC) ensures only authorized personnel can access data.
  • Regular Audits: Web2Chat undergoes regular security assessments and audits to ensure compliance.
  • Data Breach Notification: In the event of a data breach, Web2Chat will notify affected customers promptly as required by GDPR.

Best Practices for GDPR Compliance with Web2Chat

  1. Update Your Privacy Policy: Clearly outline what data you collect, why you collect it, and how users can exercise their rights.
  2. Obtain Explicit Consent: Use Web2Chat’s customizable Messenger to obtain and track user consent for data collection or processing.
  3. Handle Data Requests Promptly: Leverage Web2Chat’s export and deletion tools to respond quickly to access or erasure requests.
  4. Regularly Review Your Data Practices: Periodically review your data collection, storage, and processing practices to ensure compliance with GDPR.

FAQs

1. Is Web2Chat GDPR-compliant?

Yes, Web2Chat complies with GDPR as a data processor, providing tools to help businesses meet their GDPR obligations.

2. Does Web2Chat store data in the EU?

Yes, Web2Chat offers region-specific data hosting, including servers located in the EU, to comply with GDPR requirements.

3. How quickly can I respond to a data request using Web2Chat?

Most data requests can be fulfilled within minutes using the tools in the Web2Chat dashboard.

4. Does Web2Chat process personal data for its own purposes?

No, Web2Chat processes personal data solely on behalf of our customers, in accordance with our Data Processing Agreement (DPA).
If you need further assistance, contact our Customer Support.

Related Articles