What is the EU GDPR?
It's a set of regulations protecting personal data of European citizens and residents. Personal data includes, for example:
Photos of oneself
The regulation took effect May 25th, 2018. It applies to anyone processing and/or collecting personal data of Europeans, even if that company/institution/government is not located within the European Economic Area (EEA).
Is HelloProfit a Data Processor or Data Controller?
The short answer: both.
HelloProfit acts as a Data Processor as well in regards to how and what kinds of marketing we use: for example, in creating custom Facebook audiences.
HelloProfit could also be considered a Data Processor for your Amazon customers' personal data, because it aids in processing specific pieces of personal data, namely:
Their phone number*
*Only if the product is Fulfilled By Merchant (FBM)
These two pieces of customer data are necessary for the commercial transaction taking place on Amazon, so fall under the scope of Business Data or data relating to legal persons, not natural persons.
Who is HelloProfit's Data Protection Officer?
Under the GDPR HelloProfit does not need to appoint a Data Protection Officer, someone who works independantly to ensure compliance with regulations. (Reference: GDPR Article 37 (1) a - c)
We must, however, and do continue to comply with regulations. Please contact us via email (support[at]helloprofit.com and/or support chat with any questions and/or requests.