TABLE OF CONTENTS

A Quick Disclaimer


The information that follows is intended to be for informational purposes only. It should not be construed as legal advice. 


For further information on GDPR and related matters, please review the official sites below: 

How Pinpointe Is Preparing for GDPR


General Data Protection Regulation gives consumers more power over their personal data and means companies have to update the way they collect, store and use a customer's personal details.


Who does GDPR affect?


The GDPR hails from Europe, but it effects any business that collects information from citizens in 28 European countries that make up the European Union.


Odds are, if you collect email addresses online, you have European subscribers. Many companies are updating their entire email marketing process to comply with these new standards. 


Many companies are updating their entire email marketing strategy and every contact, whether they're EU citizens or not, into GDPR compliance.


Pinpointe's commitment to GDPR compliance


At Pinpointe, we're taking steps to help our customers comply with the new rules.

We have always strived to meet or exceed the industry's toughest privacy regulations and GDPR is no different. 


Here's how Pinpointe is preparing for the new privacy law:


From its inception, Pinpointe recognized the responsibility of data collection. We designed Pinpointe to help businesses better understand their customers and promote their products via email, but to do requires collecting personal information like names and email addresses.


We understand the gravity of data collection and have remained diligent in our security efforts to ensure information is safeguarded. When GDPR was introduced in 2016 as a replacement for 1995's Data Protection Directive, Pinpointe set two goals: 

  • Make sure our practices were GDPR compliant
  • Give customers tools to help them become compliant 


Here's some of what we've been working on:


  • Audit our personal data collection and storage process
  • Strengthen data collection protocols
  • Update privacy documents
  • Appoint a data protection officer
  • Provide customers with opt-in records that show time stamped consent
  • Educate customers about the new law


Pinpointe tools that can help with GDPR compliance


If you're a Pinpointe user, you're in luck! We've already taken steps to help you comply with the GDPR. Inside our advanced email platform, you'll find several tools that can aid in GDPR compliance:



Under GDPR, subscribers have to give their consent before you can email them. Most brands have an opt-in process that asks subscribers for consent, but there's more requirements than before. 


Before collecting a person's information, you must tell subscribers how you'll use their information and what steps can be taken for them to withdraw their consent.


Specifically, you have to tell subscribers:

  • Who and where your company is
  • Why you want their information and how you will use it
  • Whether or not data is shared with anyone else like vendors or third parties
  • How long data is kept
  • How to opt-out of your list and how personal data is erased from that point
  • How to they can report any suspected problems with data security


Any time you collect customer information, you have to be explicit in how you'll use the customer's information. If this isn't the case already, you'll have to update the language on your opt-in pages to provide all of this information.


Keep better records


Companies need to update their record-keeping procedures under GDPR too. You basically need records that show your compliance with the new regulation. That way, if a subscribers reports your company for violating the GDPR, you have proof to show otherwise.


One of the records you'll need to keep is proof of consent. Pinpointe users can access this information from their account. We keep opt-in records that provide a time and date stamp that reflects when a subscriber joined your list (Fig 1).



Make opting out easy (and be prepared to remove their data too)


GDPR gives subscribers the power to not only opt-out of an email list, but have their data removed from servers as well. It's aptly referred to as "the right to be forgotten," and gives customers the power to give and remove their personal information with ease.


Pinpointe have access to these features to help:



An unsubscribe footer is automatically added to every email (Fig 2). If a subscriber wants to opt-out, Pinpointe removes their name from your list for you.


Fig 2



Access master unsubscribe list


You can view your unsubscribe list at any time to see a running list of contacts that opted out. You can use it as a checklist to wipe customer information from your server if the customers wants to be forgotten.


Delete contacts


If a customer contacts you via email or calls your customer support line asking to be removed from your email list, you can go into your Pinpointe account and delete contacts manually by managing your database (Fig 3).


Fig 3



Updating contacts


Your subscribers also have the right to have their information updated. If a customer reaches out and wants to make these revisions, you have to comply. 


In truth, updating your records is beneficial to the subscriber and to your company. With up-to-date information, you can send relevant emails that the customer actually wants.


Pinpointe customers can simply search their database of contacts, locate the subscriber, and edit their information (Fig 4). 


Fig 4


Breaking the rules is costly


GDPR isn't a suggestion or directive, it's a regulation with binding legal force.


To make sure companies take the new regulation seriously, there are strict penalties in place for those who don't comply. As of July 1, 2025, severe violations can result in a fine up to 20 million euros ($23.5 million USD) or 4 % of their global turnover of the preceding fiscal year, whichever is higher. 


GDPR is marks a dramatic shift in data collection, storage and usage. At Pinpointe, we're making every effort to help our customers comply with these new rules and will keep you updated on future changes that are applicable to GDPR compliance.