Compliance

GDPR 🇪🇺

At MemberPass, we use the General Data Protection Regulation (GDPR) as our primary guideline for designing our software and websites. Our commitment to GDPR principles ensures robust data protection for all users:

• Data Protection by Design Privacy measures are integrated from the earliest stages of development, ensuring that data protection is a core component of our products.
• Lawful Processing All data processing activities have a valid legal basis under GDPR, such as user consent or legitimate business interests.
• User Rights We facilitate the easy exercise of GDPR rights, including access, rectification, erasure, and data portability.
• Transparency Clear and comprehensive privacy policies are provided, detailing how we collect, use, and protect user data in plain language.
• Data Minimization We collect only the data necessary for specific purposes and establish clear retention periods.
• Breach Notification Robust procedures are in place for detecting, investigating, and reporting data breaches promptly.
• International Transfers When transferring data outside the EEA, we ensure appropriate safeguards are in place to maintain GDPR-level protection.
• Vendor Management We carefully select and work only with GDPR-compliant third parties, implementing Data Processing Agreements.

Privacy Policy

We maintain a comprehensive Privacy Policy that details how we collect, use, and share information about you. It covers our data collection practices, your choices regarding your information, and other important privacy matters.

Sub-Processors

We prioritize your privacy and data security. We work with the following third-party service providers (sub-processors) to deliver our services. We select these partners based on their security standards and compliance with data protection laws.

Data Processing Agreement (DPA)

MemberPass offers a Data Processing Agreement (DPA) to customers who require one to comply with GDPR. It outlines the data protection obligations of both parties.

Global Data Protection Laws

While GDPR is our baseline, we adapt our practices to comply with other international data protection regulations as needed, ensuring comprehensive global compliance. We have assessed and validated our practices to ensure compliance with key data protection regulations, including:

• California Consumer Privacy Act (CCPA)
• Brazil's General Data Protection Law (LGPD)
• Canada's Personal Information Protection and Electronic Documents Act (PIPEDA)
• Australia's Privacy Act

Accessibility

We strive to make our products accessible to all users, including those with disabilities. Our efforts align with:

• Web Content Accessibility Guidelines (WCAG) 2.1
• Americans with Disabilities Act (ADA) standards

If you find any accessibility issues with our products, please contact us.

DMCA

MemberPass respects intellectual property rights and complies with the Digital Millennium Copyright Act (DMCA). We have established a clear process for addressing copyright infringement claims.

• If you believe your copyrighted work has been used on our platforms without authorization, please submit a DMCA takedown notice.
• We promptly review all properly submitted notices and take appropriate action, including removing or disabling access to the allegedly infringing content.
• We have a policy to terminate accounts of repeat infringers when appropriate.

To submit a DMCA notice or for any copyright-related inquiries, please contact us at [email protected].