Data Security

We care a lot about data – because we process a lot of data! It’s therefore important to us to make it easy for you to comply with the GDPR laws while using Odicci’s platform. We will do our best to assist and guide you in meeting the demands of the GDPR.

ODDICI Trust Center

We care a lot about data. Because we
process a lot of data.


The GDPR sets a high standard for consent. Companies can no longer use long illegible and unreadable terms of conditions. Consent must be clear and distinguishable from other...


To make sure your content is GDPR compliant, you need to ensure future contacts provide you with an ‘unambiguous’ consent through a ‘clear affirmative action’...


You need to review how you obtained your current email contacts in ODICCI along with their information in-store to ensure they were obtained according to the GDPR legislation. If you obtained...

Subject Access Requests

The GDPR includes the right for contacts to receive confirmation as to whether or not a company is processing personal data concerning them, including information on where and for what purpose. All brands should also provide a digital copy of the personal data, free of charge. The request should be processed within 30-days.
With Odicci, you can look up all your contacts, view their personal data and export the data digitally.

Data Portability

Data portability is the right for a contact to receive the personal data, which they have previously provided to a company, in a digital format, and the right to forward that data to another company.
With Odicci, you can easily look up a contact to review all the personal information you have obtained on. This includes contact information, dates of interaction, and information gained through interactive content (such as their favourite colour from a quiz). You can export all the information in a digital format.

Right to be Forgotten

The GDPR includes the right to be forgotten which allows individuals to request the erasure of their personal data when it is no longer necessary, when the data subject withdraws their consent, when there are no legitimate grounds for processing, or when the data has been unlawfully processed. It aims to give individuals control over their personal information and protect their privacy.

Odicci makes sure that processes as important as this run smoothly, we make sure all personal data can be removed as easily as it was found. 

Evaluate and Optimise

The GDPR puts a strong emphasis on best practices for data collection, data controller transparency, and consumer choice — all of which play a meaningful role in the customer experience. With an eye toward customer experience, think about how the following GDPR principles may affect your business efforts.

ISO27001 certified

ISO27001 is an internationally recognised standard for information security management, and it’s no small feat to meet its rigorous requirements. Our team has worked tirelessly to ensure that we not only meet but exceed these standards. We know that our clients rely on us to keep their data safe, and we take that responsibility very seriously.


This website does not include legal advice for your company to use in complying with EU data privacy laws like General Data Protection Regulation. Instead, it provides information to help you better understand what can be done on the ODICCI platform to comply with the law.

This information isn’t legal advice and we encourage you to seek a professional lawyer’s opinion when referring to this. To be clear, this information is in no way a recommendation or any expression of legal understanding.

This page does neither enlist all the regulation within the GDPR, and its important that you make sure your company meets all the legal requirements of the GPDR.