Alt Legal and GDPR Compliance
GDPR Background
On May 25, 2018, the European Union “General Data Protection Regulation” (GDPR) came into effect replacing the European Data Protective Directive 95/46/EC. It unified legislation regarding the use and management of personal data and standardized and increased privacy protections for personal data of EU individuals.
Alt Legal’s GDPR Compliance
At Legal, Inc. (“Alt Legal”) is a Delaware corporation based in the United States . As a leading trademark docketing company, Alt Legal is already committed to the protection of data as a core competency, and our software development process takes this into account. Our approach has always been to only collect personal data when necessary to provide you with Alt Legal’s services and we are committed to uploading your privacy rights. We do not sell your data to any third parties. You can see our terms here and privacy policy here. You can also opt-out of emails by contacting us at [email protected].
Our employees receive annual training on GDPR and privacy compliance. We have also completed internal data mapping processes, privacy impact assessments, and implemented strict information security and data protection policies, including incident response procedures, to ensure that any we identify, report, and resolve potential security events and data breaches as soon as possible. Alt Legal also regularly reviews its vendor agreements and data protection agreements with its vendors. If you would like details about our sub-processors, a copy of our data protection agreement, or would like to delete your data, you can email our team at [email protected], live chat at www.altlegal.com, or by calling us at +1-646-665-7975. With respect to data deletion, we will promptly remove your data after any required processing is completed, any legally binding retention requirements have been satisfied, and all parties associated with that data have agreed to its deletion.
For our customers subject to the GDPR, we acknowledge our role as a data processor, and Alt Legal will continue to fulfill that role and provide the tools and support necessary for our customers subject to the GDPR to meet their responsibilities as data controllers.
Our Approach to Security
Our communication with our services uses TLS 1.2 or greater. We encrypt your data in transit and at rest using SHA-256 and 2048 bit keys and back it up at least daily. Our application is constantly updated to address any newly-discovered vulnerabilities and threats.