Data Protection / GDPR Notice

Effective date: February 19, 2022

GDPR Compliance Statement

ScrapeNinja is committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have a robust and effective data protection program in place which complies with existing law and abides by the data protection principles. However, we recognize our obligations in updating and expanding this program to meet the demands of the GDPR.

ScrapeNinja is dedicated to safeguarding the personal information under our remit and in developing a data protection regime that is effective, fit for purpose and demonstrates an understanding of, and appreciation for the new Regulation. Our preparation and objectives for GDPR compliance have been summarized in this statement and include the development and implementation of new data protection roles, policies, procedures, controls and measures to ensure maximum and ongoing compliance.

How We are Preparing for the GDPR

ScrapeNinja already has a consistent level of data protection and security across our organization, however it is our aim to be fully compliant with the GDPR by:

Assessing: We are reviewing our current controls and processes to ensure they're adequate and have established a working group to oversee the transition.

Personal Data: We are identifying all personal data we hold and establishing why and how we process it.

Privacy Notice/Policy: We are revising our Privacy Notice to comply with the GDPR.

Individuals’ Rights: We are updating our procedures to accommodate the enhanced rights for individuals under the GDPR.

Consent: We are refining our procedures to handle consent, ensuring that we can capture, manage and evidence consent.

Data Protection Officer: We are appointing a data protection officer to oversee the implementation of our new procedures and systems, and to ensure we continue to uphold individuals' data rights.

Data Breaches: We are updating our procedures to detect, report and investigate any personal data breaches.

International Data Transfers: We are reviewing all our processes to ensure we protect personal data to the standards required within the EU wherever it is processed.

Data Processors: We are reviewing all our relationships with third parties, to ensure we have GDPR compliant contracts in place.

Data Protection by Design: We are implementing the principle of data protection by design into all our future projects and systems.

Training and Awareness: All staff involved with handling personal data will be trained in our new policies and procedures.

Children: We will implement new procedures to verify individuals' ages and to gather parental or guardian consent for any data processing activity.

Our GDPR Principles

ScrapeNinja takes the privacy and security of individuals and their personal information very seriously and take every reasonable measure and precaution to protect and secure the personal data that we process. We have robust information security policies and procedures in place to protect personal information from unauthorized access, alteration, disclosure or destruction.