Hotjar is fully committed to achieving compliance with the General Data Protection Regulation, GDPR, prior to the regulation’s effective date. We began to dedicate internal resources to the GDPR in June 2017, almost a full year before the deadline.
Our customers, and their customers, rights to privacy are Hotjar's priority because of this, compliance with and to international law and regulations are very important to us.
What is GDPR?
The General Data Protection Act, GDPR, is considered to be the most significant piece of European data protection legislation to be introduced in the European Union, EU, in 20 years and will replace the the 1995 Data Protection Directive.
The GDPR regulates the processing of personal data about individuals in the EU including its collection, storage, transfer or use. Importantly, under the GDPR, the concept of “personal data” is very broad and covers any information relating to an identified or identifiable individual, also called a “data subject”.
It gives data subjects more rights and control over their data by regulating how companies should handle and store the personal data they collect. The GDPR also raises the stakes for compliance by increasing enforcement and imposing greater fines should the provisions of the GDPR be breached.
The GDPR enhances EU individuals’ privacy rights and places significantly enhanced obligations on organizations handling data.
We have set up a dedicated resource for GDPR and the steps we are taking to achieve compliance that can be found here.