Movement is built on EU level compliance and GDPR policy
Movement is built with GDPR compliance at its core, ensuring that your organisation communications meets the highest standards of data privacy and security. Whether you’re a trade union, political party, or NGO, we provide the tools and safeguards you need to handle personal data responsibly and transparently.
What Is GDPR?
The General Data Protection Regulation (GDPR) is a landmark piece of legislation introduced by the European Union to protect individuals' personal data. It grants individuals greater control over how their data is collected, stored, and used while holding organisations accountable for its proper handling.
The regulation applies to any organisation that processes the personal data of EU citizens, regardless of where the organisation is based. Non-compliance can result in significant penalties, including fines of up to €20 million or 4% of annual global turnover—whichever is higher.
Encryption built by organisers for organisers
Movement integrates state-of-the-art encryption into every aspect of its platform, ensuring that your organisation’s most valuable information is locked down at every stage:
Transparency
Individuals must know how their data is being used.
Accountability
Organisations must demonstrate they are meeting GDPR requirements.
Data Minimisation
Only the necessary data should be collected and processed.
Privacy by Design
Data protection measures must be integrated into systems and processes from the outset.
How Movement supports GDPR compliance
At Movement, we recognise the importance of GDPR not just as a regulatory framework but as a vital mechanism for protecting the rights of individuals. Our platform has been designed to help your organisation remain fully compliant with GDPR requirements, no matter the size of your team or the scope of your operations.
Get StartedKey features of Movement’s GDPR compliance
Data Stored in the EU: All data processed and stored on the Movement platform is hosted within the European Union, ensuring full compliance with EU data protection laws. By keeping data within EU borders, we adhere to the strict standards set out by GDPR, providing an added layer of security and peace of mind.
Explicit Consent Management: Ensure you have clear, auditable consent from individuals before collecting their data. Movement makes it easy to gather, store, and manage consent records for your members, supporters, or stakeholders.
Data Access and Portability: GDPR gives individuals the right to access their personal data and request its transfer to another service. Movement enables you to fulfil these requests quickly and efficiently.
Right to Be Forgotten: Should a member or supporter wish to have their data deleted, our platform ensures it can be permanently and securely removed from all systems.
Secure Data Storage: All personal data is encrypted both in transit and at rest, ensuring maximum protection against breaches or unauthorised access.
Activity Logs and Audit Trails: Movement provides detailed records of all data processing activities, giving you a transparent view of how data is managed and offering evidence of compliance when needed.
Data Breach Notifications: In the unlikely event of a data breach, Movement is equipped to help you meet GDPR’s requirements for timely notifications to affected individuals and relevant authorities.
Why GDPR Compliance Matters for Your Organisation
Trade unions, political parties, and NGOs often handle highly sensitive personal data, from membership details to campaign supporters’ contact information. GDPR compliance is not only a legal obligation but a vital part of maintaining trust and credibility with the individuals and communities you represent.
With Movement, you can:
Protect Trust:
Demonstrate your commitment to safeguarding personal data and respecting the rights of your members and supporters.
Avoid Penalties:
Reduce the risk of fines or sanctions for non-compliance.
Enhance Transparency:
Build confidence by operating in an open, accountable manner when it comes to data handling.
Privacy by Design, Built into Movement
Movement’s platform embodies the principle of Privacy by Design, integrating robust data protection measures into every aspect of its operation. From secure data collection to automated compliance tools, we provide the resources you need to meet GDPR’s standards while focusing on your organisation’s mission.
By choosing Movement, you’re not just opting for a compliant platform—you’re choosing a partner committed to protecting your organisation, its members, and its values. With all data securely stored in the EU and managed in accordance with GDPR and EU data protection policies, Movement gives you the confidence to operate without compromise.
A Security First platform
System features and configuration settings designed to authorise user access while restricting unauthorised users from accessing information not needed for their role.
Use of bank grade encryption technologies to protect customer data both at rest and in transit.
Regular vulnerability scans over the system and network, and penetration tests over the production environment.
Operational procedures for managing security incidents and breaches, including notification procedures.