Skip to main content

This article describes how we at Typelane work with GDPR to make sure requirements are meet and that data is handled correctly.

Written by Paulin Larsen Berglöf
Updated over a week ago

Typelane have always taken privacy very seriously and we’ve been working to ensure that we fulfil the GDPR obligations and maintain our transparency about how we use data.

What is GDPR?

The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonise data protection laws across Europe, to protect and empower all EU citizens privacy and to reshape the way organisations across the region approach data privacy. GDPR comes into effect on May 25, 2018.

We at Typelane are committed to GDPR compliance and we’re excited to help our customers understand how we are approaching this. For full details on the measures we take to protect our customer data, please review our Privacy Policy and our Terms of Use.

Data Typelane collects

Data that Typelane collects can be classified into three categories; information employees give us, employee information given to us by employers and information Typelane collects, and information we receive from other sources. Employees provide information via the forms when they answer questions set up by their employer.  Employers provide basic information about their employees such as email, name, start date and manager. Answering questions set up by the employer are always optional for the employee. 

Typelane automatically collects information when the platform is used for systems administration purposes. This is to ensure that the right access has been set by the account administrators. 

How the data is used

The information that is provided by employers and is gathered by the employee are made available within the platform. The data provided by an employee or employeer can at any time be deleted by an admin.  

How data is retained by Typlane

The data will store data for up to 5 years. We will not store personal data for longer than is reasonably necessary to use it in accordance with our Privacy Policy, our contractual agreement with the customer, or with our legal rights and obligations. In the event that your organisation stops using Typelane, data will be fully anonymised within 8 months, at the latest.

Data storage

For storage our core data we use Google Cloud and it's hosed inside the EEA.  Employee data is stored and processed, with reasonable and adequate actions being taken to ensure it is stored securely and safely.

For some features data may be require that we transfer, process, or stored at a destination outside the European Economic Area ("EEA").  Full details of the use of sub-processors can be found in here.

How data is protected

At Typelane we make sure to take technical and organisational measures to make sure data is secure and that we mitigate against accidental, unauthorised or unlawful loss, destruction, alteration, disclosure or access to Personal Data.  

Measures Typelane take to ensure data is handled securely include:

  • Encryption of Personal Data

  • Backup and disaster recovery arrangements on a daily basis

  • Continues testing and evaluation of the resilience of the system. 


If you have any further questions, please contact us at

List of Typelane Sub-processors and DPA

Here is a list of all of our sub-processors and information about what they do and where they are located.

Did this answer your question?