Get answers to your questions

Do you want answers? They're probably right here. If you don't find the answers you want about the Expert PDF, ask them here rdsupport@readdle.com. If you have additional questions about personal data, send them here dpo@readdle.com

Quick Guide

• What is Personal Data?
• What is the GDPR?
• Does the GDPR apply to an individual or legal entities?
• What is our role under GDPR?
• Who is User?
• What have we done to comply with GDPR?
• How do you get my personal information?
• What is the Data Processing Agreement ("DPA")?
• Are users required to sign the DPA?
• Can a user share the DPA with its own users?
• Do I need to customize the DPA?
• Are there unique DPA needs for individual countries?
• Do users need to notify anyone upon accepting our DPA?
• Do we transfer data internationally?
• What is personal data processing under the GDPR?
• What my personal data is processed?
• How can I set cookies on my browser?
• How long do you store my data?
• What can I do with my personal data?
• How do you protect my data?
• What security measures do you have in place for data transfers?
• How do we handle delete instructions from users?
• How can I contact you?

What is Personal Data?

An individual is ‘identified’ or ‘identifiable’ if you can distinguish them from other individuals.

The term "personal data" means the totality of data that can identify a person. There is no clear list of what is personal data and what is not. This list varies from case to case.

To be more specific, in PDF Expert we process the following personal data: representative’s name, email address, position, company data (name, country, company type and size), phone number, company ID, product name, business data / education, history of payment, history of requests, account data.

Please, see more at our Privacy Notice.

See more answers at Quick Guide

What is the GDPR?

The General Data Protection Regulation (GDPR) is a European privacy law that went into effect on May 25, 2018.

The GDPR replaces the EU Data Protection Directive, also known as Directive 95/46/EC, and will apply a single data protection law throughout the EU.

Data protection laws govern the way that businesses collect, use, and share personal data about individuals.

Among other things, they require businesses to process an individual’s personal data fairly and lawfully, allow individuals to exercise legal rights in respect of their personal data (for example, to access, correct or delete their personal data), and ensure appropriate security protections are put in place to protect the personal data they process.

See more answers at Quick Guide

Does the GDPR apply to an individual or legal entities?

The GDPR applies to all entities and individuals based in the EU and to entities and individuals, whether or not based in the EU, that process the personal data of EU individuals.

See more answers at Quick Guide

Who is User?

The data we process is divided into two categories: technical information and data that is provided to us by users - data subjects. We divide our user into user, consumer, vendor, partner and customer.

User is a person to whom we provide our App on a free basis.

Сonsumer - our user, individual, to whom we provide our App on a paid basis.

Vendor (legal entity)- our user to whom we provide our App on a paid basis.

Partner - legal entity or natural person to whom we provide our services on an individual basis.

Customer is an employee or other person who has accessed our App through our vendor or partner. Example: Company A bought 15 licences for employees. Controller of data of employees is Company A, while Readdle is processor.

Please, see more at our Privacy Notices for the website and for the App.

See more answers at Quick Guide

What is our role under GDPR?

We are a data controller: We act as a data controller of personal data of our users and clients (at the moment of concluding a contract), which means that we determine what, for what purpose and how your personal data will be processed.

We are a data processor: We act as a processor of personal data of our customers where the controller is our Vendor or Partner.

See more answers at Quick Guide

What have we done to comply with GDPR?

We conducted an extensive analysis of our operations to ensure compliance with the requirements of the GDPR before it went into effect. With the help of external advisors, we reviewed our products and services, user terms, privacy notices and arrangements with third parties for compliance with the GDPR. Also our IT team is keeping security issues as an ongoing process. Our focus on privacy and compliance efforts are ongoing.

See more answers at Quick Guide

How do you get my personal information?

In general, you can use the Services without providing any personal information such as e.g. your name, email address, postal address, telephone number, financial information (all such information concerning the personal or material circumstances of an identified or identifiable individual data subject ( together "Personal Data").

Therefore, if you do not provide us directly with Personal Data in another way or actively consent to the Use by us of certain Personal Data, we, in general, do not Use your data with the exception of some cases. Read more in our Privacy Notices for the website and for the App.

See more answers at Quick Guide

What is the Data Processing Agreement ("DPA")?

Users that handle EU personal data are required to comply with the privacy and security requirements under the GDPR. As part of this, they must ensure that the vendors they use to process the EU personal data also have privacy and security protections in place. Our DPA outlines the privacy and security protections we have in place. We are committed to GDPR compliance and to helping our users comply with the GDPR when they use our services.

See more answers at Quick Guide

Are users required to sign the DPA?

In order to use our products and services, you need to accept our DPA, which we have provided a link to on our website: Data Processing Agreement. By agreeing to our terms of service, you are automatically accepting our DPA and do not need to sign a separate document.

See more answers at Quick Guide

Can a user share the DPA with its own users?

Yes. The DPA is a publicly available document and users who wish to share it with their users to confirm our security measures and other terms may feel free to do so.

See more answers at Quick Guide

Do I need to customize the DPA?

As a standard, neither people nor companies are required to set up a DPA additionally. However, if you are strongly convinced that it is necessary, contact us.

See more answers at Quick Guide

Are there unique DPA needs for individual countries?

The GDPR applies to all of the EU and we offer a DPA that is compliant in all EU countries.

See more answers at Quick Guide

Do users need to notify anyone upon accepting our DPA?

No. You are not required to notify us or any third party upon accepting our DPA though, as mentioned above, you are free to do so.

See more answers at Quick Guide

Do we transfer data internationally?

We are headquartered in Ireland. Mainly we store data in the US while basic processing is handled within the EU. However, we transfer data to our contractors and partners who are outside the EEA in order to provide you with our services. Be sure that to all our vendors are applicable security and administrative measures to keep this transfer GDPR compliant.

Also you should remember that if you are outside the EU your data would be transferred to us.

See more answers at Quick Guide

What is personal data processing under the GDPR?

Processing covers a wide range of operations performed on personal data, including by manual or automated means. It includes the collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of personal data.

As with the definition of personal data, it is impossible to provide a clear list of processing operations. The list will vary from case to case.

See more answers at Quick Guide

What my personal data is processed?

Your browser transfers certain data so that it can access the Website, namely: the IP address, the date and time of the request, the browser type, the operating system, the language and version of the browser software.

Readdle's websites use cookies to personalize your experience on our sites.

Emails sent by us through third-party services such as MailChimp or CampaignMonitor may contain tracking pixels that help us gather statistics about the delivery and opening of our correspondence. These pixels do not provide us with any additional personal information about you or your online behavior and you can always turn it off.

The App receives data: namely your IP address, the periods of time in which you use the App and the type of device you use (e.g. IPhone, IPad), as well as events within the application recorded with Amplitude analytics in order to give us the possibility to continuously improve the App

You can provide us with the following information: your name, email address, postal address, telephone number, financial information. Read more in our Privacy Notices for the website and for the App.

See more answers at Quick Guide

How can I set cookies on my browser?

Readdle's websites use cookies to personalize your experience on our sites. Cookies tell us which parts of our websites people have visited, help us measure the performance of ads, and give us insights into user behavior so we can improve our communications and products. You can disable cookies anytime in your web browser. A detailed description is in the Privacy Notices for the website and for the App.

See more answers at Quick Guide

How long do you store my data?

We store Personal Data as long

• as required for the provision of the Services to you, and/or
• as it is necessary with regard to the contractual relationship with you, thereafter only if and to the extent that we are obliged to do so by mandatory statutory retention obligations.

Special storage period:

• Transient cookies are automatically deleted when you close your browser.
• Session cookies are deleted when you log out or close your browser.
• Persistent cookies are automatically deleted after a specified period, which may differ depending on the cookie.

You can read more in our Privacy Notices for the website and for the App.

See more answers at Quick Guide

What can I do with my personal data?

• You can disable tracking pixel (from MailChimp or CampaignMonitor) in your email client which will deactivate this feature, however you will be unable to see any images within other received emails
• You can disable cookies anytime in your web browser.
• You have the right to request information from us at any time about your Personal Data stored by us.
• You have rights to request from us access to and rectification or erasure or restriction of processing concerning your Personal Data or to object the processing of your Personal Data as well as the right to receive your Personal Data
• If you have given your consent to the use of personal data, you can revoke such consent at any time
• If you believe that the processing of your Personal Data by us is in breach of the applicable data protection laws, you can issue a complaint with the competent supervisory authority for data protection.

You can read more in our Privacy Notices for the website and for the App.

See more answers at Quick Guide

How do you protect my data?

We have taken extensive technical and operational precautions to protect the Personal Data retained by us against unauthorized access and misuse. Our security procedures are revised regularly and adapted to reflect technological progress.

See more answers at Quick Guide

What security measures do you have in place for data transfers?

We utilize many security measures to protect your data including but not limited to:

• Data processing systems must be prevented from being used without authorization.
• Personal data must not be read, copied, modified or removed without authorization during transfer or storage and it shall be possible to establish to whom personal data was transferred.
• PDF Expert shall be able retrospectively to examine and establish whether and by whom personal data have been entered into data processing systems, modified or removed.

See more answers at Quick Guide

How do we handle delete instructions from users?

Users have the ability to remove or delete information they have uploaded to our products. Likewise, users may deactivate their account and request that all personal data we have collected and stored is deleted.

See more answers at Quick Guide

How can I contact you?

You can contact us at rdsupport@readdle.com

You can also write directly to our Data Protection Officer at dpo@readdle.com or at our GDPR Representative Office at the following address:

Readdle Limited
Glandore Business Centre, Grand Canal House, 1 Grand Canal Street Upper, Dublin 4, D04 Y7R5, Ireland

See more answers at Quick Guide