We will update Xvoucher to capture why a user is accessing Xvoucher. In most cases this will be due to freely given consent or performance of a contract. This will include the following;
We will update Xvoucher to notify, collect, track,and manage consent based on the GDPR requirements. This may include, but is not limited to, the following:
We will update Xvoucher to enable the removal of end user data. This may be a manual or automated process that works within the 30 day window once a request for removal is made.
We will provide a report in Xvoucher that will list out the relevant end user data when a request for access is submitted.
We will provide a process for Xvoucher administrators to update inaccurate or incomplete end user data when a request for modification is submitted.
Xvoucher has undertaken significant security and infrastructure updates and will continue to review and implement features based on GDPR requirements.