Last amends: 21st October, 2018
GDPR came into force on the 25th May 2018. It is a landmark privacy set of the riles called the General Data Protection Regulation. It will take effect from the 25th May 2018. ReplyUp team is working hard to ensure full compliance of GDPR.

What is GDPR?
The General Data Protection Regulation (GDPR) is a regulation by which the European Parliament, the Council of the European Union, and the European Commission intend to improve data protection for all individuals within the European Union (EU).

The GDPR will replace the 1995 Data Protection Directive. The GDPR is the new Europe-wide set of rules governing the use and handling of individuals’ personal data. You can read the full regulation here.

It has 3 goals:

Standardizing European data protection regulations.
Giving citizens control over how their personal data is used.
Making sure that companies are aware of their responsibilities regarding personal data. are aware of new GDPR requirements and restrictions and will be fully compliant with GDPR when it comes into effect on May 25, 2018.

Does this affect me?
The GDPR regulation applies to any EU residents’ data, regardless of where the processor or controller is located. This means that if you’re using from the US to reach out to other US corporations, the regulation doesn’t affect you. But if some of your customers or leads are in the EU, you should pay attention to it.

The GDPR has also eliminated the distinctions between various types of businesses — including B2B, B2C, for-profit, and nonprofit — meaning the law applies equally to all organizations that process the personal data of European citizens.

When should you be ready for GDPR?
All relevant actors must be in compliance with the GDPR by May 25th, 2018. You should start familiarizing yourself with this new legislation now so you are fully prepared.

Data Processing Addendum is in most cases a processor. As a data controller, under Article 28 of the GDPR, you need a data processing addendum (DPA) signed with your processors. You can contact us at to get started.

How is complying with GDPR

We respect your privacy rights and therefore you may contact us at any time and we shall work diligently to respect your choices and requests regarding your Personal Information. The purpose of the list stipulated below is to allow Users and Contacts to exercise their rights under applicable privacy and data protection regulations:

Right of Access: You may request to access your Personal Information and obtain a copy of Personal Information which is being processed by In the event that you request to know what Personal Information is being processed by us, we will provide you with the following information free of charge: purposes of processing; categories of Personal Information processed; recipient(s) of Personal Information; length of time during which the Personal Information will be stored; your privacy rights; and information on data transfers. Such requests will be made by filing in your relevant details
Right of Rectification: You may request to change, update or complete any missing data we process about you, by with your relevant details. Please note that we may rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion.
Right of Erasure: You may at any time withdraw your consent to our processing of your Personal Information. In this case, if there is no overriding legitimate interest for continuing the processing of your Personal Information (e.g. to comply with our legal obligations, resolve disputes, enforce our agreements, etc.) and the Personal Information is no longer necessary in relation to the purpose for which it was originally collected, we will erase your data. Such withdrawal of consent will be made by contacting us with your relevant details.
Right of Restriction of Processing: You may request us to restrict processing of your Personal Information if one of the following applies: (i) the accuracy of the Personal Information is contested by you; (ii) the processing is unlawful; or (iii) if we no longer need the Personal Information. Such request will be made by contacting us with your relevant details.
Right to Data Portability: You have the right to receive the Personal Information in a structured, commonly used and machine-readable format. Such request will be made by contacting us at with your relevant details.
Your data security is of paramount importance. You can view more information here:

Any other questions?
Our work related to the GDPR is still in progress and you can expect this and related pages to be updated regularly. Should you have any other question, we’re here to help: