Statement on GDPR and CCPA Compliance

Here at Dock, we have taken a proactive approach to ensuring that our services meet and exceed data privacy requirements under the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). In addition to requiring businesses to be transparent about their data practices (see our Privacy Policy), both laws give individuals specific rights with respect to their data:

CCPA Rights for California Residents

  • The right to know about the personal information we collect about them and how it is used and shared;
  • The right to delete personal information collected from them (with some exceptions);
  • The right to opt-out of the sale of their personal information; and
  • The right to non-discrimination for exercising their CCPA rights. 

GDPR Rights for Individuals in the European Union

  • The right to access the personal information collected about them;
  • The right to rectify the personal information collected about them;
  • The right to erasure (the “right to be forgotten”);
  • The right to restrict processing;
  • The right to data portability; and
  • The right to object to processing.

For more information about these rights and how to exercise them, you can visit our Privacy Policy. To exercise any of these rights, you can submit a Privacy Request through our website. 

Here are some additional examples of our approach to privacy under the CCPA and GDPR:

Proactive Approach. Dock proactively monitors upcoming changes to privacy law in the EU and California so that we can be prepared to implement any new changes in the law. For example, Dock Labs is aware of the recently passed California Consumer Privacy Rights Act which goes into effect in 2023 and significantly updates and amends the CCPA. We will be ready. 

‍Privacy by Design. Our legal and engineering teams collaborate to implement privacy practices during the design and development of our software. As a result, we are building our services in a way that will make privacy compliance simple for us, our Account Holders, and their Clients. 

‍Vendor Management. We understand that with data privacy, you are only as strong as the weakest link. That is why we assess the data privacy posture of all of our vendors, with enhanced scrutiny applied to those that process personal data.

Trust and Accessibility. We understand the need to offer choice and transparency around the collection and processing of personal data. That is why we have a dedicated privacy team ready to respond to any data privacy questions or requests. You can contact our privacy team at:

Transparency and Evolution. We collaborate internally and externally, with our legal and data privacy counsel, and our Account Holders as part of an iterative process to develop and implement workable privacy practices and solutions.