How do we comply with the GDPR?

Article 32 of the General Data Protection Regulation (GDPR) states that both controller and processor should implement appropriate technical and organisational measures to ensure an appropriate level of security.

We, as a data processor, consider our customers' data security a priority and we are working on adapting our platform and operations to fully comply with the GDPR requirements.

Following the guidelines of the regulation, we have implemented new strategies and reinforced existing ones. In particular, we're focused on:

  • Pseudonymisation and encryption of personal data.

  • Ensuring confidentiality and integrity of the data process.

  • Potentiating our data restoration process following technical incidents to make available data in the least amount of time possible.

  • Conducting regular tests to investigate the efficacy of the security measures implemented.

  • Developing new features to ensure that the citizens' rights introduced by the regulation can be guaranteed, and to provide the tools needed for our customers to respond easily to Data Subject Access Requests (DSARs), without undue delay.

  • Collaborating with suppliers and clients to make sure both us and our users fully comply with the regulation.

  • Ensuring transparency of our security measures and operations.


At Claimable, we are continuously working on our GDPR compliance plan to make sure we fully implement its requirements at every level.

We are committed to helping our customers comply with the GDPR to leave them the peace of mind to focus on their operations.