I am having some doubts in relation to whether the website I am working on can be GDPR compliant using Amelia. I understand that Amelia does not save any data, and I will also get a DPA with the hosting provider. Also the website will not collect any sensitive data in the booking form (only name, email and phone number). I also managed to add a checkbox for users to accept the privacy policy before they submit the form. So far, so good.
The point where I am concerned is when it comes to the notifications that will be sent to the user. It is my understanding that according to GDPR, email communication must happen securely whenever there is sensitive data involved, such as health related data.
For instance, let's say that a user books a session for therapy, and then receives a booking confirmation (which basically states that the person has booked a session for therapy). Then I suppose one could argue that the booking confirmation contains sensitive data. In my case it is not exactly therapy, but coaching sessions (so perhaps it is a grey zone).
In either case, I would like to know (also for future projects) whether there is any way to send notifications with end to end encryption???
Unfortunately there is no option to send encrypted emails, only the normal ones to the customer or to some other email address.
We did not have any feedback from our customers that use some third party services to achieve this, so we can not guarantee if that will work.
I'll kindly ask you to add it as a feature suggestion on this page.
Features are pushed up on our "to-do" list when there are a lot of customers requesting those features, so having your vote as a customer can be beneficial to this feature being developed sooner.
Hi,
I am having some doubts in relation to whether the website I am working on can be GDPR compliant using Amelia. I understand that Amelia does not save any data, and I will also get a DPA with the hosting provider. Also the website will not collect any sensitive data in the booking form (only name, email and phone number). I also managed to add a checkbox for users to accept the privacy policy before they submit the form. So far, so good.
The point where I am concerned is when it comes to the notifications that will be sent to the user. It is my understanding that according to GDPR, email communication must happen securely whenever there is sensitive data involved, such as health related data.
For instance, let's say that a user books a session for therapy, and then receives a booking confirmation (which basically states that the person has booked a session for therapy). Then I suppose one could argue that the booking confirmation contains sensitive data. In my case it is not exactly therapy, but coaching sessions (so perhaps it is a grey zone).
In either case, I would like to know (also for future projects) whether there is any way to send notifications with end to end encryption???
BR Sanna
Hi Sanna
Thank you for reaching out to us.
Unfortunately there is no option to send encrypted emails, only the normal ones to the customer or to some other email address.
We did not have any feedback from our customers that use some third party services to achieve this, so we can not guarantee if that will work.
I'll kindly ask you to add it as a feature suggestion on this page.
Features are pushed up on our "to-do" list when there are a lot of customers requesting those features, so having your vote as a customer can be beneficial to this feature being developed sooner.