search

Easyship Solutions & Updates

How Easyship Protects Your Personal Data

At Easyship, we know your data and privacy are important. In this post, we outline the steps we're taking to protect it, including our GDPR and Privacy Shield policies.
How Easyship Protects Your Personal Data
Tommaso Tamburnotti

By Tommaso Tamburnotti

 

October 23, 2020

We built Easyship with the mission of providing transparency to the complex and intricate world of shipping. And that same ethos applies to how we handle your data. If you think about it, the golden rule also applies to data. Treat others’ data as you would like yours’ to be treated. Safely, securely and in the hands of people you trust.

Our business is built on relationships with partners, platforms and customers. Sharing data is essential to creating a seamless experience. But we don’t do so without taking the proper precautions to keep everyone safe. At Easyship, we are compliant with GDPR and the EU-U.S. Privacy Shield Framework and SWISS-U.S. Privacy Shield Framework. We have incorporated industry best practices for protecting your data and assuring only authorized employees and third-parties have access to it.

Here’s how we’re protecting your data and privacy.

Our Policies

Each Easyship employee completes onboarding security education upon hiring and must complete GDPR training as well. We review these policies on an annual basis to make sure we are compliant with industry best practices.  We’ve taken the appropriate electronic and managerial measures in order to safeguard, protect and secure Users’ personal information.

We conduct quarterly security assessments and access controls review to assure the storing data are protected well.

Easyship is GDPR Compliant

Easyship follows GDPR, which means the business collects data related to two parties: the senders that are Easyship users and the receivers that are not required to use Easyship.

As a Data Controller, Easyship collects the following information from senders:

  • Full name
  • Physical address
  • Billing address
  • Company name
  • Email
  • Phone number
  • Payment details

As a Data Processor, Easyship processes the personal data for the receivers of each shipment, on behalf of the senders. Easyship processes the following information for receivers:

  • Full name
  • Physical address
  • Phone number
  • Email
  • Products purchased

The data points outlined above are collected with business intent. More specifically, with the purpose of providing shipping services, getting in touch with the parties (both sender and receiver) in case a shipment is delayed while out for delivery or stuck in customs and to conduct surveys — always with the parties consent (i.e. legitimate interest).

As we work with shipping companies and customs departments around the world, it’s expected that these entities may require information about past shipments, which is why we use this data securely. For more details, please visit our GDPR page.

Easyship is Compliant With Privacy Shield

The EU-US and Swiss-US Privacy Shield Frameworks (we’ll refer to it as “Privacy Shield” going forward) were designed by the US Department of Commerce and the European Commission and Swiss Administration, respectively, providing companies on both sides of the Atlantic with a guideline for transferring and protecting personal data in support of transatlantic commerce.

And for all those who are wondering, yes, Easyship has been compliant with the Privacy Shield since 2019. You can view our current certification by reviewing the public list of Privacy Shield certified organizations listed on the Privacy Shield website.

Protecting Your Data With Our Partners

With this transfer of intellectual property and, of course, actual property safety is at the heart of our operation. Still, we understand the concerns of “How do we protect data with our partners?”

First thing’s first, we work closely with our platform partners to ensure data is secure. Customers' private information stays private. Furthermore, as an app, we rely on other platforms, making collaboration on data protection integral to all of our partner relationships.

Rest assured that we don’t share data back to partners. Anything you share with us, stays with us. Just us. We are fully compliant with GDPR and the Privacy Shield and are always keeping our eyes peeled for new developments when relevant.

Why privacy and data protection are important for eCommerce

Privacy and eCommerce go hand in hand. eCommerce has been able to grow because consumers had confidence they could purchase online with credit cards securely. It bears repeating that frictionless global commerce relies on this trust and security.

All platforms, apps and stores take all precautions to protect data, and, in turn, their customers.

Data is more valuable than ever and there are more bad actors out there trying to find weaknesses in the system. That means businesses must be more careful than ever. Those bad actors reinforce our instinct to be as transparent as possible. As the saying goes, transparency begets transparency begets mutual trust between retailers and customers.

For more information please visit our full privacy policy and Data Processing Agreement.

For further questions, you contact our Data Protection Officer at [email protected]