How is Tamigo preparing for the GDPR

Tamigo will be compliant with the GDPR when it becomes enforceable in May 2018. To make sure we are on the right track we have invested in fulltime inhouse Data Protection Officer who will be working closely with management and security teams.

 

We are already well on our way for being GDPR compliant: our datacenters have always been within the EU; application data traffic is always encrypted and we make sure to train our staff on how to handle data securely. There are also more steps we are working on, but most of the work is behind the scenes:

 

Tamigo will publish data processing agreement as soon as it is ready. If you need additional information regarding data processing in Tamigo, feel free to contact Steven Gauvin (dpo@tamigo.com).

 

Can​ ​I​ ​use​ ​Tamigo​ ​before​ ​you are​ ​fully​ ​compliant

Yes, you can definitely continue using Tamigo products. We are already well on the way towards being fully compliant and our security team is working on reviewing final details.

 

Tamigo features to assist you with GDPR compliance

Roles, custom roles

You can already configure Tamigo so that your employees can only access pages that they are meant to access. You can also create custom roles in Tamigo to ensure that different employees who handle data (managers, planners, payroll) will only see the necessary data.

Hide absence reasons

Employees’ absence reason is considered sensitive data in GDPR. You can configure Tamigo to only display absence reason to the employee who requests absence and his or her supervisor.

Automated data anonymization (*)

Currently still in development, the feature will allow you to permanently remove sensitive and identifiable data from an employee, and this way ensure compliance with the right to be forgotten. Feature is scheduled for release in mid-April.

Export all data for a single employee (*)

Based on GDPR data mobility requirements, it will be possible to export a package containing all data for specified employee that were stored in Tamigo – personal and salary details, shifts, vacations, documents, etc. Feature is scheduled for release in the end of March.

Employee data field visibility per role (*)

Currently it is possible to adjust which employee data fields are visible across roles. Once this feature is ready, it will be possible to show and hide certain fields based on who is viewing the data. For example, payroll responsible person will only see employee details which are needed to payout wages. Feature is scheduled for release in mid-April.

What data does Tamigo store and How is Tamigo handling my data

Tamigo stores the data that is provided by our customers as well as system usage data. The system usage data only contains references to data stored by our customers – no identifiable or sensitive data is stored for this purpose.

Receiving of data

Tamigo stores the data that is provided by our customers as well as system usage data. The system usage data only contains references to data stored by our customers – no identifiable or sensitive data is stored for this purpose.

How long does Tamigo store data

We store data as long as you are an active customer. After contract termination, the data is retained for 90 days.

Where is data stored

All customer data is hosted within EU. We make sure that our 3rd party service providers are GDPR compliant and store and process all data within EU.