The General Data Protection Regulation (GDPR) was introduced by European Union in 2018, and it affects both European and non-European businesses if they are targeting guests / users in the European economic area
Since 2014 IPERA has been adapting privacy rules since we have launched the IPERA Starling platform. All the features and options in the Splash Pages are compliant with the privacy regulations that many countries has in place
Here are a few steps that IPERA partners and customers need to do when enabling Starling Guest Experience & Engagement platform
1. Collect Communication Consent
The main legal basis for collecting and processing your users’ personal data is consent. IPERA products include many features and capabilities that allow us to serve our customers needs to comply with GDPR regulations. It is our customer's responsibility to make sure they configure the IPERA Starling platform in compliance with GDPR and IPERA consultants will be happy to help in case needed
- If you are collecting the data for promotional communications, make sure to enable marketing consent on the splash page
3. Allow Guests to Access Their Information
For each tenant, we have a link that can be shared with Guests upon their request.
The link can be accessed via Settings > Advanced Settings
Profile Access URL link should be shared with guests upon request
Guests (end-users) have the option to login using their email address or mobile number.
Guests (end-users) have the option to export their data in Excel or Delete their personal data. In this case, their email address and communication data will be removed permanently
** Please note that to access the end-users to their profile URL from outside the network, the URL should be a public DNS record.