GDPR Compliance

SurveyMethods is fully compliant with the General Data Protection Regulation (GDPR). We provide the tools and features you need to conduct GDPR-compliant surveys.

Contact Us Privacy Policy

What is GDPR?

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that governs how organizations collect, process, and store personal data of individuals in the European Union (EU) and European Economic Area (EEA).

Who Does It Apply To?

GDPR applies to any organization that collects or processes personal data of EU residents, regardless of where the organization is located.

Why Does It Matter?

Non-compliance can result in significant fines up to €20 million or 4% of annual global revenue, whichever is higher.

GDPR-Compliant Features

Tools to help you collect data responsibly

Consent Management

Add consent checkboxes to your surveys to obtain explicit consent for data collection and processing.

Anonymous Surveys

Create fully anonymous surveys that don't collect any personally identifiable information.

Data Deletion

Easily delete individual responses or entire surveys to comply with the right to erasure.

Data Export

Export respondent data in portable formats to fulfill data portability requests.

Privacy Policy Links

Add links to your privacy policy directly in your surveys to inform respondents.

Data Retention

Set automatic data retention periods to ensure data isn't kept longer than necessary.

Our GDPR Commitments

Data Processing Agreement

We offer a Data Processing Agreement (DPA) to all customers, outlining how we process data on your behalf as a data processor.

EU Data Centers

For EU customers, we offer data storage in EU-based data centers to ensure data residency compliance.

Subprocessor List

We maintain and provide a list of all subprocessors who may access personal data as part of our service.

Breach Notification

In the unlikely event of a data breach, we commit to notifying affected customers within 72 hours as required by GDPR.

Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee GDPR compliance and handle data protection inquiries.

Data Subject Rights

GDPR grants individuals the following rights

📋

Right to Access

Know what data is collected about them

✏️

Right to Rectification

Correct inaccurate personal data

🗑️

Right to Erasure

Request deletion of their data

📦

Right to Portability

Receive their data in a portable format

Need a Data Processing Agreement?

Contact us to request a DPA or for any questions about GDPR compliance.

Contact Us Security Overview