What Is GDPR?
The General Data Protection Regulation is a wide-ranging law designed to protect the privacy of individuals in the European Union (EU) and give them control over how their personal data is collected, processed, and used. The law applies to any company that collects or processes the data of European consumers.
How Is Emburse Spend's Role Defined Under GDPR?
To deliver our services, Emburse Spend acts as a data processor, with each of our customers acting as the data controller. Emburse Spend receives personal data from our customers in the context of providing expense reimbursements and corporate card management.
How Emburse Spend Supports GDPR Compliance
In 2018, Emburse undertook an extensive initiative with a third-party expert to ensure our compliance with GDPR. Emburse Spend has and will continue to implement and maintain appropriate technical and organizational measures designed to protect and secure customer data, including personal data, under the guidance of GDPR.
We are committed to the compliance of all parties, including you, third parties, and us. If you have any questions regarding our security practices please reach out to our Support team.
Action Items: What You Need To Do Next
1. Please review our Service Level Agreement.
2. Please review our revised Privacy Policy.
3. If your organization is subject to GDPR, please review our Data Processing Addendum and, if applicable, countersign and create a support ticket with an executed copy attached.