GDPR (General Data Protection Regulation)

Last updated: June 1, 2018

By May 25th European Unions’s (EU) new regulation, the General Data Protection Regulation (GDPR) becomes enforceable. At Userbrain, we are hard at work ensuring that our own practices are GDPR-compliant.

Userbrain is committed to protecting the security and privacy of entrusted data as well as helping our customers comply with regulations such as the GDPR.

Here are measures Userbrain is committed to as one of your data processors:

  • Secure data transfer and storage outside the EU: Transfers of personal data outside the European Economic Area (EEA) are permitted as long as certain safeguards apply. Our customer Data Processing Agreement contains the EU Model Clauses, which are industry standard for data safety. This means that Userbrain agrees to protect any data originating from the EEA in line with European data protection standards.
  • All data is encrypted in transit.
  • In line with our current policies, Userbrain will promptly inform you of any incidents involving your users’ personal data.

Data Processing Agreement

In case you need a Data Processing Agreement for Userbrain, you can contact us anytime at Please provide the following information: account e-mail, name, company name, address, country.

Status: Done

GDPR Compliant Privacy Notice

We’ve already updated our privacy policy to cover all GDPR related things.

Status: Done

Right to Access and Portability

You can export all your account data into a machine readable format. This is possible for customers and testers on the account settings page.

Status: Done

Right to Erasure

You are now able to execute a GDPR-compliant delete, which will remove every trace of your customer or tester details including your user test videos from our system, permanently.

Status: Done

Right to Rectify

You can already change any account related data like your email address on your account settings page. We made sure that updating your contact information details is also reflected within third party systems.

Status: Done

Data Breach and Data Security

To comply with GDPR we have a notification system and emergency processes in place whenever there is a loss, alteration, unauthorized disclosure of or access to any personal data. In case of a data breach, we’ll promptly inform you of any incidents involving your personal data.

Status: Done

If you have any questions about the GDPR or want to learn how Userbrain can help you be compliant, please contact