How we comply with GDPR
Luke avatar
Written by Luke
Updated over a week ago

Consent collection

Using ByDiscovery, you can collect consent through a widget before capturing email addresses.

Appropriate safeguards

We have implemented appropriate technical and organizational measures to protect your data in accordance with Article 32 of the GDPR. We store all data on Amazon Web Services in a secure manner. More information about how your data is secured can be found on our security page.


With all vendors and sub-processors who process data on our behalf, we have appropriate Data Processing Agreements (DPAs).

Sub-Processors used by ByDiscovery

The following list includes ByDiscovery’s subprocessors, their countries of operation, and the services they offer.




Sub-Processor Measures


Cloud Service Provider


Backoffice application, CRM and email marketing


Application monitoring and error tracking



As part of ByDiscovery's commitment to data security and privacy, all of its sub-processors have appropriate legal and security protections in place. In order to do this, we have to sign a Data Processing Agreement (together with Standard Contractual Clauses, where applicable) with all of our sub-processors, and ensure they all have supplementary measures in place.

ByDiscovery will inform its customers if it needs to designate new subprocessors or make any changes to the existing subprocessors and give them fifteen (15) business days to object reasonably.

Did this answer your question?