General Data Protection Regulation (GDPR)
The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.
- Data Controller - Business party creating the data (a customer of Nylas)
- Data Processor - Receives data from Data Controller and does something with it (exNylas))
- Data Portability - Allowing a customer to export all of their data in a machine readable format
- Right to be Forgotten - Allowing a customer to delete all of their data from Nylas
Nylas complies with all GDPR provisions as a Data Processor. We honor the 'Right to be Forgotten', 'Data Portability', and notification in the case of data breach as defined under EU GDPR provisions.
Data Portability - Nylas customers should submit their requests to our support team. Nylas staff will promptly reply with a link to your data that will be live for 1 week.
Data Deletion - All user account data can be deleted using our API Delete an Account.