• Home
  • Features
  • Pricing
  • Contact Us
  • GDPR

GDPR Compliance Document

Effective Date: July 20th, 2024

 

1. Introduction

This document outlines the compliance of Maply with the General Data Protection Regulation (GDPR). Maply is committed to ensuring the privacy and protection of personal data processed through our Zoho CRM extension. Maply is provided by Maply, located at Carrera de San Jerónimo, 15, Madrid, 28014, Spain.

 

2. Data Controller and Data Processor

 

a. Data Controller:

Maply acts as the Data Controller for the data it collects and processes automatically.

 

b. Data Processor:

Zoho CRM acts as the Data Processor, where all user interactions and data exchanges occur within the Zoho CRM environment.

 

3. Data Collection and Processing

 

a. Data Collected Automatically:

Maply collects the following data for performance optimization:

  • Territory shapes (boundaries).
  • Route directions.
  • User settings.

 

b. Data Storage:

Maply does not store Zoho CRM data. All CRM records are cached locally on the client side, and data exchanges occur exclusively on the client side.

 

4. Legal Basis for Processing

Maply processes personal data based on the following legal grounds:

  • Performance of a Contract: Processing is necessary for the performance of a contract with the data subject (e.g., providing mapping and routing features within Zoho CRM).
  • Legitimate Interests: Processing is necessary for the purposes of the legitimate interests pursued by Maply (e.g., improving our services).

 

5. Data Subject Rights

Under GDPR, data subjects have the following rights regarding their personal data:

  • Right to Access: Data subjects have the right to request access to their personal data.
  • Right to Rectification: Data subjects have the right to request the correction of inaccurate or incomplete personal data.
  • Right to Erasure: Data subjects have the right to request the deletion of their personal data under certain conditions.
  • Right to Restrict Processing: Data subjects have the right to request the restriction of processing of their personal data under certain conditions.
  • Right to Data Portability: Data subjects have the right to request the transfer of their personal data to another organization or directly to them, under certain conditions.
  • Right to Object: Data subjects have the right to object to the processing of their personal data under certain conditions.
  • Rights Related to Automated Decision-Making and Profiling: Data subjects have the right not to be subject to automated decision-making, including profiling, that has legal or similarly significant effects on them.

 

6. Data Security

Maply implements appropriate technical and organizational measures to ensure the security of personal data, including:

  • Administrative security measures.
  • Technical security measures.
  • Physical security measures.

 

7. Data Breach Notification

In the event of a data breach, Maply will notify the relevant supervisory authority and affected data subjects within 72 hours, where feasible, in accordance with GDPR requirements.

 

8. Data Retention

Maply retains personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. Upon termination of the Maply extension, all user data is deleted.

 

9. International Data Transfers

Maply ensures that any international transfers of personal data comply with GDPR requirements, including the use of standard contractual clauses or other appropriate safeguards.

 

10. Updates to this Document

Maply reserves the right to update this GDPR compliance document as necessary. We will notify users of any changes by posting the updated document on our website.

 

Contact Information

For any questions or concerns regarding this GDPR compliance document or to exercise your data protection rights, please contact us at: help@maply.co