Yakit statement on GDPR
The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
This statement by Yakit indicates that we comply fully with the GDPR. The section below shows how a Yakit customer (merchant) may request a GDPR report and compliance.
Yakit GDPR policy statement
Effective May 25, 2018
- Yakit does not solicit any data from our EU consignees (recipients of shipments). They get to see our tracking for shipments that their consignors (merchants) are sending via Yakit.
- As part of GDPR, we have stopped cookieing the tracking URLs that the consignees access.
- Since EU consignees send their data to the merchants who in turn send them to us for the purpose of shipping the products, Yakit allows merchants to request GDPR compliance. Specifically:
- a) Right to data access: Merchant can request Yakit to query by consignee name and address, what data Yakit possesses on the consignee and how it's utilized.
- b) Data portability: Yakit does not support this requirement since we are not the collector of data (the merchant is).
- c) Right to be forgotten: Merchant can request that a consignee (by name and address) be forgotten (data erasure).
- d) Breach notification: Yakit will notify our customers (merchants) within 72 hours of a data breach that might compromise their privacy.