Skip to main content
Data privacy and GDPR
Jonas Lindemann avatar
Written by Jonas Lindemann
Updated over 3 months ago

Please note that this is no legal advice and our customer support team is not allowed to offer any legal advice, too. Please refer to your company's data privacy officer or a qualified legal consultant in to find out what your specific compliance requirements are.

Coapp places great emphasis on the security and protection of the data it processes for its clients. Particularly in the European context, Coapp offers comprehensive measures to ensure compliance with the General Data Protection Regulation (GDPR) and other relevant security standards.

Data Processing in the EU

The data processed by Coapp is stored and handled in data centers located within the European Union. This ensures that all relevant legal requirements within the EU are met. Hosting and processing are conducted in collaboration with Amazon Web Services (AWS) at EU-based data centers, certified according to strict international data security standards (ISO/IEC 27001:2013).

State-of-the-art Encryption

Coapp employs cutting-edge encryption methods to safeguard data during transmission and at rest. This protects the data from unauthorized access and ensures it is securely processed at all times.

GDPR Compliance

To meet the requirements of the General Data Protection Regulation (GDPR), Coapp offers:

Data Processing Agreements (DPAs): These contracts define Coapp’s responsibilities as a data processor, providing clients with legal assurance regarding data handling.

Data Protection Impact Assessments (DPIAs): Coapp conducts assessments to identify and mitigate potential risks to data privacy caused by processing activities.

Proven Experience with Public Institutions

Coapp has a successful track record of collaborations with public institutions within the EU, demonstrating the company’s reliability and expertise in data security.

Answers to frequently asked Qustions

How do I delete all personal data of my customer?

How you delete a customer is explained here. To remove all personal data of a specific customer irrevocably please contact our support team.

I need a Data Processing Addendum (DPA), where do I get it?

Please contact our support team to receive a signed Data Processing Addendum (DPA) between your company an coapp GmbH.

I need a Data Protection Impact Assessment (DPIA) where do I get it?

Please contact our support team to receive the latest Data Protection Impact Assessment (DPIA) created by coapp GmbH's data privacy officer.

Roles – Who is the Data Processor and who is the Data Controller?

When using coapp to run your community business you have closed a contract (Data Processing Agreement or DPA) with the coapp company in which coapp is processing your customers' data on your behalf. Meaning: coapp acts as your Data Processor.

As you are offering the community as a service to your members you are acting as the Data Controller.

For more information please refer to our Privacy Policy and the Data Processing Addendum (DPA).

What kind, where and how does coapp process and store the data that is processed on behalf of its customers?

As of February 1st 2023, all data that is processed by coapp on behalf of its clients is processed and stored in Frankfurt, Germany in the European Union. For more information please refer to our Privacy Policy and the Data Processing Addendum (DPA).

Did this answer your question?