Welcome to https://superparser.com (“website”). We are glad to see you. This page is designed to help you understand how we ensure compliance with GDPR.
We are committed to honoring our users’ rights to data privacy and protection. Even if our users might not be based in the EU, their candidates may be, so it is important that SuperParser is GDPR compliant to ensure all our clients are covered.
Under the GDPR, SuperParser is a Data Processor, and our customers are Data Controllers.
SuperParser’s Data Protection Officer & Security Officer Jack Rowley email@example.com
SuperParser’s platform does not store documents sent to it for parsing, nor does it store the results from such processing. All processing takes place in memory. Neither documents nor results are ever written to disk or any other persistent storage.
To the extent that we act as a data processor on your behalf in connection with the performance of our Services, we will enter into a separate ”Data Processing Addendum” with you.
Under GDPR, individuals have the right to ask for the following:
For Parsing Services, we act as a data processor and don’t store any documents sent for parsing nor store any processed information. You as a data controller should take the consent before sending documents for parsing.
Data within SuperParser is secured using industry-standard encryption. Under Article 46 of the regulation, data can be transferred outside EU borders if the processor has appropriate security measures in place and if our client (the data controller) and SuperParser (data processor) have entered into a contract that includes contractual clauses specified by the EU.
According to Article 30 of GDPR, our clients need to maintain a record of all activities pertaining to the personal information of a data subject. SuperParser maintains a detailed audit log of all the activities.
Article 33 states that for any potential data breach, the supervisory authority (our client) must be notified within 72 hours of occurrence. We have sufficient data monitoring mechanisms in place to become aware of any such breach. In case a personal data breach occurs, we will send breach notifications in accordance with our internal incident response policy (within 72 hours of us discovering the breach). The communication will be sent as per the guideline mentioned in Article 33. This will give sufficient time for our clients to convey the breach to the respective authorities. Additionally, we will notify users through our blogs and social media for general incidents. We will notify the concerned party through email (using the primary email address) for incidents specific to an individual user or an organization.
For any queries, please contact us at firstname.lastname@example.org