You might be GDPR-compliant, but what about your outside partners and vendors?
Under GDPR, any third party that processes your users’ data is legally obligated to be in compliance. If you use a company that is not compliant, you can be held liable and suffer the consequences including paying fines.
As you know, MailerLite has been on top of GDPR compliance. We want to ease your mind and give you the confidence that your email marketing practices comply with GDPR.
To that end, we are happy to present our Data Processing Agreement, which establishes our GDPR compliance so you can rest assured.
GDPR is all about protecting your users’ data. If you use other companies to help you process user data in any way, you are required to enter into a written agreement with each data processor.
In GDPR language, you are considered the ‘controller’. Your responsibility is to protect your users’ data by vetting your data processors. You need to establish that they are GDPR compliant.
A written agreement is important to ensure that both you and your data processing partner understand the obligations and liabilities that come with GDPR compliance.
But more importantly, legally-binding contracts with your vendors will instill confidence in your subscribers that you have their interests in mind.
We created our Data Processing Agreement to cover the GDPR requirements as they relate to email marketing. Our goal is always complete transparency and our agreement mirrors this approach with clear details about:
In compliance with GDPR, the agreement also covers our security measures, confidentiality policies, and our acknowledgment and approach to working with other vendors (also called sub-processors.)
According to privacy laws, you have to clearly describe how you plan to use your subscribers’ data, including for your use of third parties like MailerLite.
We use MailerLite to manage our email marketing subscriber list and to send emails to our subscribers. MailerLite is a third-party provider, which may process your data using industry standard technologies to help us monitor and improve our newsletter.
You can unsubscribe from our newsletter by clicking on the unsubscribe link provided at the end of each newsletter.
We've shared our progress in updating MailerLite to help our users achieve GDPR compliance. If you missed our previous articles, we have listed them below for your convenience.
Covers our new solutions that address right to be forgotten, proof of subscriber consent, and identifying EU users.
Covers our new opt-in form features that now include GDPR templates, checkboxes, and new design options.
Gives an overview of GDPR and highlights our revalidation template.
GDPR is here. While we are ready, we know there will still be questions and concerns relating to Email Marketing. We will continue to stay on top of GDPR and share our insights and recommendations in the coming weeks and months.
If you have unanswered questions about email marketing and GDPR, we encourage you to comment below.
I'm Jonas, Content Manager at MailerLite. I’m not the 4th Jonas Brother, but I do write content (which is similar to being a teen heartthrob). After writing for a bunch of companies over the years, I discovered my professional passion—helping add some humanity to B2B marketing. Email is the perfect place to start!