What GDPR features does Zoho Creator offer?

Estimated reading: 2 minutes 15 views

When and where does GDPR come into play?

GDPR applies for any activity that collects or processes the personal data of EU residents. It does not matter if the said activity takes place inside the EU or not. GDPR has a global reach.

Key roles that GDPR identifies

  • Personal Data: Any information that can identify a person—like name, email, IP address, or even travel habits.
  • Data Subject: The individual whose data is being collected (typically an EU resident).
  • Data Controller: The party that determines why and how personal data is processed.

Data Processor: The party that processes data on behalf of the Data Controller.

Your Role with Zoho Creator

When you use Zoho Creator:

  • You are the Data Controller: You collect and control personal data through your apps.
  • Zoho is the Data Processor: We process data on your behalf.

When you sign up for Zoho services:

  • You are the Data Subject
  • Zoho is the Data Controller

Zoho Creator's GDPR readiness

How Zoho Creator Helps You Address GDPR Rights

  1. Right to Be Informed
  • Add a Note field in your form to tell users why you’re collecting their data and how it will be used.
  • Include a link to your privacy policy.
  1. Right to Access / Erasure / Be Forgotten
  • Forward any user requests for data access or deletion to [email protected]. We’ll guide you on the next steps.
  1. Right to Rectify
  • Let users edit their personal data directly through report views.
  1. Right to Object
  • Use decision box fields to get users’ consent before processing data. Design workflows that respect user preferences.
  1. Right to Data Portability
  • Users can export their data from reports in formats like PDF or Excel.

Best Practices for GDPR-Ready Apps

Mark Personal Data Fields

Use the “Contains personal data” field property to identify sensitive data fields.

Enable Encryption

 

Turn on field-level encryption to store sensitive user input securely.

Capture Location and IP (With Consent)

Enable form settings to capture location and IP address during submission.


Obtain Consent Transparently

  • Add a Note + Decision Box combo to forms or create a separate form for consent.
  • Email users a copy of their consent with the message content included.

Use Double Opt-In

  • Create a pre-registration form that includes an opt-in checkbox and sends a confirmation email with a link to the main form.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

Learn how we helped 100 top brands gain success