Data Protection Resources

We've compiled resources for BSD Tools and CallOut customers that describe how we're addressing EU and UK data protection regulations. 


The EU General Data Protection Regulation (GDPR)

The EU General Data Protection Regulation (GDPR) is a new set of data privacy and security laws which aims to protect EU data subjects from privacy and data breaches. It applies not only to organisations located within the EU but also to organisations located outside of the EU — like Blue State Digital — if they offer services to EU data subjects. The full text of the legislation can be found at

The GDPR goes into effect on 25 May 2018.


Action Plan

Blue State Digital welcomes the GDPR as an important step toward streamlining data regulations in the EU and UK and as an opportunity for us to strengthen our commitment to data protection. Our Action Plan details the changes we are making to our products and processes to maintain compliance. We expect to complete all updates before the May 2018 deadline, with time for customers to test and implement the updated functionality.

Blue State Digital GDPR Action Plan
Download the Blue State Digital Action Plan (.pdf)


Resources for BSD Tools & CallOut Customers

BSD Tools & CallOut Subprocessors

Security Measures

Data Classification

Data Processor & DPO Information


Customer Responsibilities

Per GDPR regulations, BSD Tools and CallOut customers must maintain records as a controller of personal data. Customers must notify Blue State Digital of any change to their Data Controller or Data Protection Officer information using the methods below.  

Data Controller Information Update   Data Protection Officer Information Update