Hello @RCoom-2088 ,
Great question, and thank you for sharing what you found that document is indeed relevant for your UK customer!
The document you linked is Geotab's Product Privacy Notice, and it explicitly covers UK GDPR alongside EU GDPR, so it applies directly to your customer's situation.
Here is a summary of the key points to share with them:
Where is the data stored?
Geotab primarily stores data on servers located in North America, Europe, and Asia. For UK customers, data is handled in compliance with UK GDPR. When data is transferred internationally, Geotab uses standard contractual clauses approved by the relevant Data Protection Authority to ensure an equivalent level of protection.
What security measures are in place?
Geotab holds strong security certifications including:
- ISO 27001:2022 — for the MyGeotab platform and GO devices
- SOC 2 Type 2 — covering security, availability, and confidentiality controls
More detail on Geotab's security posture can be found here: (https://www.geotab.com/security/) and in our Technical and Organizational Data Security Measures STATEMENT (TOMS) document
Will Geotab have access to the data?
Geotab acts as a data processor, not a data controller. Meaning the customer owns and controls their data. Geotab only accesses data as instructed by the customer, or where there is a specific business need such as technical support. Access is limited to personnel with a genuine business reason.
What about video data specifically?
Video footage is stored with encrypted cloud storage. Customers control how long data is retained (default is 2 years, but this is configurable). Customers also have the ability to delete footage and apply privacy features such as face blurring.
For UK-specific GDPR information, your customer may also find this page helpful: Geotab UK GDPR & Privacy
(https://www.geotab.com/uk/fleet-management-solutions/privacy-gdpr/)
Please let us know if you have any other questions. We are here to help.
Have a great day!
Eishi FUN