How does this affect me?
The EU GDPR has introduced new rules to increase Personal Data control for EU Citizens, including the right to request personal records (Right to Access) and to request personal record deletion (Right to be Forgotten). New security requirements were also introduced with the goal of increasing data security accountability of businesses handling the Personal Data of EU Citizens.
Does Emsisoft store my Personally Identifiable Information (PII) or Personal Data?
Yes. Personal Data is any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. Emsisoft stores various pieces of user information that could be considered as Personal Data.
What PII / Personal Data does Emsisoft store?
Emsisoft stores various pieces of user information that would be considered as Personal Data, including, but not limited to:
Full name. Note: You may choose a random pseudonym/nickname at any times.
Password. Note: We only store an individually salted hash of your password that doesn’t allow us or anyone else to restore or see it.
Postal address. Note: Only if you require your full address on invoices, ie. business orders.
Machine-ID hash. Note: A unique hash of a combination of several hardware component serials, used to assign and protect licenses. Serials can’t be restored from the hash.
Location on country level. Note: Based on publicly available information about your IP.
We explicitly do not store any credit card information, as online orders are processed by our trusted e-commerce partners.
Does any of my data leave the EU?
Yes. Emsisoft uses third-party applications to host customer data, provide other infrastructure, and perform other service functions. Some of these third-party services are hosted outside of the EU. All of our third party service providers are hosted in countries which obey strict and lawful standards of security.
I’m not an EU Citizen, will you treat my data security differently?
No. All our customers can expect the same level of data security regardless of location and nationality.