This is the overall view, with the implementation policies and documentation about GDPR from EVBox's office. Feel free to contact our legal office for further information.
The General Data Protection Regulation (GDPR) is considered to be the most significant piece of European data protection legislation to be introduced in the European Union (EU) in 20 years and will replace the 1995 Data Protection Directive. The GDPR enhances EU individuals’ privacy rights and places significantly enhanced obligations on handling data. The regulation will become effective and enforceable on the 25th May 2018.
Our commitment: EVBox is fully committed to achieving compliance with the GDPR. Here at EVBox, we care about being compliant with regulations and ensure the right use of data. More importantly, we care about you, your business, and your privacy.
We are taking many steps across the entire company to ensure we will be ready for the GDPR. One of the first step was to appoint a Legal & Data Protection
Based on the research conducted by both our inside and outside counsels we are confident these changes will address the requirements of GDPR.
We only collect information which will allow us to perform our job on your behalf, in the most efficient manner possible. Which is why we collect your personal, professional, for the purposes of sending you the content or marketing collateral you give consent to or getting to you the quotation you requested. We also collect charging and financial data only for the purposes of creating an account, providing charging insights on your sessions, and invoicing you.
Depending on your situation, there are different things you might need to do. Below are the two most impactful changes that we can foresee that might affect you as a result of being an EVBox customer:
Make sure your Terms of Service or Privacy Policy properly communicate to your customers how you are using EVBox charging management platform on your website or collateral. We recommend you ensure your policies are up to date and clear to your visitors and readers.
If you are in the European Union you’ll likely want to sign a Data Processing Agreement (DPA) with EVBox. We’re happy to do so. For DPA or any other data privacy related topics, please contact our Privacy Team at: dataprivacy@evbox.com
What does the GDPR regulate?
The GDPR regulates the processing of a data subject’s personal data in the European Union including its collection, storage and transfer or use. The GDPR gives data subjects more rights and control over their data by regulating how you should handle and store any personal data they collect.
Who does the GDPR apply to?
The provisions of the GDPR apply to any entity that processes personal data of individuals in the European Union (EU), including tracking their online activities, regardless of whether the entity has a physical presence in the EU.
We are not based in the EU. Do we still need to comply?
Yes! If you are an entity outside the EU, you should still be aware of the GDPR and comply with it if you process personal data of individuals in the EU.
What happens if we don’t comply with the GDPR?
Lack of compliance can result in fines of up to 4% of annual global turnover or €20 Million (whichever is largest) for breaching GDPR.
We would like to inform my end users that we use EVBox software charging solutions on our site. Can you provide any sample wording that we could use in our Privacy Policy?
Yes, we have a sample English version that you can include in your Privacy Policy. Please note that it is a very generic statement and might need to be tailored to fit your particular use of our service. Disclaimer: EVBox is here to help - but does not provide legal advice. This material has been prepared for informational purposes only, and it is not intended to provide, and should not be relied on for legal or compliance advice. For specific advice on how you are to comply with the GDPR, you should consult your own legal advisor.
Please send your questions to info@evbox.com and we'll get back to you shortly.