CoachHub Compliance Centre
GDPR as our Joint Opportunity
Taking German privacy and data protection laws to the next level, since May 2018 the General Data Protection Regulation (GDPR) revolutionises and unifies European Union (EU) and European Economic Area (EEA) data protection laws. Further, as the forerunner and gold standard in data protection, the GDPR inspires data protection laws across the globe, such as the California Consumer Privacy Act.
What’s Different Under The GDPR?
Important changes due to the GDPR include more rights for EU individuals, extensive data breach notification duties, strict security requirements, cross-border data protection, extensive accountability and easier enforcement. The GDPR allows for a fine of up to 4% of the global corporate group turnover. Consistent application matters: The European Court of Justice and the entire chapter 7 ensure the GDPR is applied cooperatively and consistently across the EEA. The GDPR supports the common data market, allowing for easier flow of personal data within the EEA and with third countries with comparable data protection standards. Measures such as Binding Corporate Rules, Privacy Shield certifications, and data protection model clauses secure processing of personal data in third countries with lower data protection standards. Please refer to our banking industry standard data processing addendum for details.
Certified Data Protection and Security
Data protection and data security is more important than ever and a top priority at CoachHub. To prove we really mean it, at CoachHub we offer our customers a platform with certified data protection including state of the art security. An independent on site audit by a renowned certification authority approved CoachHub’s data protection based on:
- Compliance with legal requirements for data protection (such as the GDPR) as well as
- Principles of state of the art IT-security measures in accordance with important aspects of international standards on information security management systems (ISMS) such as ISO 27001.
Data protection designed in Germany
We design our software and related compliance and data protection measures in Germany so you enjoy our digital coaching experience and leave the rest to us. As your number one digital coaching platform, CoachHub provides highly confidential digital coaching that effortlessly scale across global corporate groups. You can opt to receive GDPR-compliant, fully anonymous statistics on coaching success. You transparently control your data. We take consent seriously: you’re free to share what you want. And we don’t stop at GDPR compliance: We aim to go further and implement important privacy and confidentiality features even if they’re not legally required. We’re happy to comply with the GDPR even where it doesn’t apply to you. Further, we gladly assist our clients in complying with applicable foreign and international law.
Security is CoachHub corporate culture
At CoachHub, we care about security as a matter of corporate culture: We use technical and organisational measures at online banking level, PCI DSS Level 1, ISO 9001, and ISO 27001 certified data centers. We use multi-factor authentication, password managers, and other good security practices, because without security there is no privacy or confidentiality. For details, please refer to our materials below or contact us. Please be aware that for legal and security reasons, detailed documentation on technical and organisational measures of CoachHub and its partners is only be available under a non-disclosure agreement.
“At CoachHub, we’re enthusiastic about and committed to your compliance as well as ours. We deeply care about strict confidentiality and full compliance with applicable privacy and data protection laws, in particular the GDPR.”
GENERAL COUNSEL | DATA PRIVACY
Dennis Jansen, LL.M.