Updated Sept 7th, 2023.
Supplier Audit for GDPR Compliance
We supply a downloadable Supplier Audit from the EvolutionX Admin. We recommend you download it as part of your GDPR compliance to serve as an audit of EvolutionX as a data processor of your data. To download the Processor Audit questionnaire, and other documents, go to the EvolutionX Admin → Store Settings → Security and Compliance → Compliance → EvolutionX Processor Audit
EvolutionX GDPR Data Processor Policy
Data Processor Policy
This Data Processor Policy (the "Policy") sets out the obligations of [name of data processor] (the "Processor") when processing personal data on behalf of [name of data controller] (the "Controller").
ECI Solutions EvolutionX platform, as the Data Processor, shall:
Process the personal data only in accordance with the Controller's instructions and for the purposes specified by the Controller.
Take all necessary technical and organizational measures to protect the personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.
Keep the personal data confidential and not disclose it to any third party without the Controller's prior written consent, except as required by law.
Provide the Controller with all information necessary to demonstrate compliance with the GDPR.
Notify the Controller without undue delay if it becomes aware of any breach of security affecting the personal data.
This Policy shall be governed by and construed in accordance with the laws of the European Union.
Changes to the Policy
The Processor may change this Policy from time to time. Any changes will be updated here with the date to indicate the date it was modified.
If you have any questions about this Policy, please contact the Processor by email: