We do indeed comply with EU privacy rules. We encrypt all user data in our database, all parts are password protected (obviously) and we separate the database and application on different servers.
We host our application on Amazon AWS. The EU and the US have agreed on how to keep data safe according to EU privacy rules. They call this agreement the Privacy Shield. From their website:
"The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were designed by the U.S. Department of Commerce and the European Commission and Swiss Administration to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce."
We signed an addendum for our hosting contract with Amazon to enlist in their Privacy Shield Program. Read more about what Amazon has to say about this in their Privacy Shield FAQ.
GDPR and AWS
On May 25, 2018, the GDPR came into effect. Amazon AWS services is compliant with GDPR.
AWS and HR data
We get quite a lot of questions about HR data and whether this is included in the Privacy Shield Program we have with AWS. We host in Frankfurt, Germany, so we comply with GDPR for personnel data.
If you have any questions about this matter, or anything else regarding the use of our tool, please feel free to contact us.
You can send us a message using the chat feature on our website, or you can send us an email via email@example.com.
Or you can check out the information in our Help Center: