This document describes Expertflow’s privacy and how it complies with https://www.eugdpr.org/ and ISO 27001 . It was last updated on April 30
This privacy statement describes how Expertflow collects personal information about its customers either offline (business cards,...) or from visitors to the Expertflow website at www.expertflow.com. It explains what user data we collect from you, through our interactions with you and how we process and use that data. We are committed to protect your data as we do not allow publishing it or sharing it with the third-parties, and to use personal information only in the way described herein.
Collection, processing and use of data on www.expertflow.com
Use of Google Analytics and Google Adwords, online Marketing tools
We use Google Analytics, Google Adwords, cookies and similar technologies on our website, and might use tracking code in our emails to help ourselves understand user behavior on our website, conversion tracking and website traffic analysis.
We also use online CRM or ticketing tools to process personal information.
We either ensure that we host this information on our own servers, or verify that all softwares that treat personal information comply with GDPR.
You need to consent explicitly to our newsletter. If you do so, we will use your email address to inform you about our products, services or news, but will not share this information with any third party. You can always revoke your consent by unsubscribing to the newsletters or any email information you are getting from us on your emails.
Outside of newsletter subscriptions, we will send you personal 1:1 direct emails if we think a product or service might be relevant for your particular situation.
Reference statements, sharing during projects
Expertflow asks its clients consent explicitly before we mentioning them as a reference.
During ongoing projects, it might be required to share information of you with third parties in order to deliver a project. We keep this information sharing strictly related to the particular project and task at hand.
GDPR compliance of Expertflow software
This chapter describes how Expertflow software is designed to comply with GDPR.
The only software that Expertflow provides that stores customer information is currently CIM (client interaction management). It stores and manages customer information as configured by the client. The link between an (identified) customer (such as name, first name, address, phone number, email,...), and any associated information (phone numbers, QA scores, list, interactions,…) is done via keys. The only object that allows the identification of a customer is the customer object itself. It is also possible to keep a customer object bare of any identifying information, and to store identifying information in a third-party system (for example a CRM). Expertflow provides PCI-DSS compliant API’s that allow retrieval and storage of any information related to that particular customer.
Expertflow ensures that you can access/ view/ modify customer-specific information in machine-readable format.
Expertflow itself does not store any information about it’s client’s customers, and any hosting that might be done is under the responsibility of the client.
GDPR – Client’s customer information
This chapter describes how Expertflow complies with GDPR during projects with clients.
Expertflow does not store or edit directly any information about it’s client(or partner)’s customers. Expertflow clients need to ensure that no remote connection that is provided to Expertflow engineers provides access to customer informations. Expertflow will aim to highlight any breach in this, so that Expertflow employees will have no access to the client’s customer information..
Contact for Privacy concerns
For questions and queries on our privacy statement, processing, access and use of private information, correction, blocking or revocation of any granted consent to us, please contact us at
ExpertFlow LLC, Jägerweg 18, 3014 Bern, Switzerland, +41 31 331 7417, [email protected]