Is HelpDocs GDPR compliant?

Yep! Here's what we've been working on the past few months to prepare for GDPR.

If you've been living under a rock the past year (or just hate rules), GDPR (the General Data Protection Regulation) is new EU regulation designed to protect user data and privacy. It came into effect on May 25, 2018

Updated terms & privacy policy

Our terms and conditions & privacy policy have both been overhauled to be GDPR compliant. We don't offer a DPA (Data Processing Addendum), we have chosen to be compliant through terms alone.

When you log in to the HelpDocs dashboard as an existing customer we may ask you to review our new terms and privacy policy to continue using the service. I'd recommend reading both in depth, not just accepting them, since it's a crucial part of your GDPR compliance as well as ours. 

Unfortunately we can't review or sign any custom terms or privacy policy your legal team provides

Vendors and international data transfer

A lot of our vendors are based in the US, and your data will be transferred to the US to be processed. Where possible all our vendors are certified under the EU-US Privacy Shield.

We've changed almost all our vendors in preparation for GDPR to be sure your data is secure, signing DPAs with vendors where available & appropriate. We now only work with vendors that have a strategy in place for GDPR compliance.

Data security

We take a number of steps to keep your data secure, as outlined here. This is an area we haven't had to change in preparation for the GDPR—we've always cared about your data being safe on our platform, and will continue to invest heavily in protecting your data.

Data portability

We had data export features before we even heard of GDPR, so you can export all your content as a CSV whenever you like. If you need extra data just get in touch and we'll see how we can help.

Right to be forgotten

If you want us to securely remove all your data from our servers just say the word. We'll respond to any requests for data deletion within 30 days.


We've revised all our opt-in and signup flows to request explicit consent to receive email from us. We'll still send onboarding emails (with a clear opt-out link as always) but if you don't want, we won't send you product updates or blog posts.

Next up

GDPR's an important step towards privacy, and the changes we're making will apply to all customer accounts, not just those in Europe. 

We're working with our legal team to ensure full continued compliance with the GDPR and any changes to privacy legislation. We're also reviewing our internal processes to keep your data safe and secure—it's something we think about with every new feature.

If you have any questions about privacy or the GDPR, you can reach out to us by live chat, or send an email to 🙏

What did you think of this doc?