FeedbackFive is compliant with GDPR. Read more below.
Can you provide a Data Processing Agreement (DPA)?
Yes. The plain English version of our DPA is below. The full legal language is available as part of our Terms of Service and Privacy Policy.
A signed DPA is available upon request. If you need a signed DPA, please contact us.
Plain English Data Processing Agreement:
In compliance with the European Union’s Global Data Protection Regulation (GDPR), eComEngine has put together a Data Protection Agreement between a Data Processor (eComEngine) and a Data Controller (a Seller on Amazon), governing how we handle the Data of a Data Subject (a Buyer on Amazon). There are five key areas to be addressed:
- The subject matter and duration of the processing
(What service does FeedbackFive provide, and how long does it need the data to provide that service?)- The nature and purpose of the processing
(Why does FeedbackFive need this data to provide this service?)- The type of personal data to be processed
(What kind of information does FeedbackFive use?)- The categories of data subjects
(Whose data does FeedbackFive use?)- The obligations and rights of the controller
(What does FeedbackFive need from the Seller, and what can the Seller expect from FeedbackFive?)FeedbackFive provides automated email delivery and reputation management services for Amazon Sellers. The data is kept active in our system for up to 12 months, and then it’s archived by an authorized data officer, where it stays until we get a removal request.
FeedbackFive uses the data received from the Seller to send the right email to the right buyer at the right time, and for improvement of the service.
FeedbackFive uses the Contact Data and Customer History of people who have bought things on Amazon from a Seller who uses our service.
Our Sellers need to tell us if one of their buyers wants to be forgotten as soon as they receive the request. Once they do that, a Seller can expect us to completely remove their data relating to that buyer from our system and our archives. The Seller has a right to double check our compliance with GDPR, and expect us to assist with that. The Seller can trust us to keep the data confidential, and notify them if we get a request from the authorities to disclose any of that data.
How long do you store customers’ data?
We store the data in our systems for up to twelve (12) months, and we then archive it indefinitely for statistical purposes.
How can I remove a customer’s data from FeedbackFive’s system?
Simply send us a message identifying the customer who should be removed, and we will delete the data within 30 days as allowed by the GDPR.
I have more questions. Whom can I contact?
Please contact us here in the Help Center. We will be happy to answer your questions.