Is Book Creator GDPR compliant?

Dan AmosNews

We take security and privacy extremely seriously, building it into Book Creator from the outset. We are fully compliant with the GDPR.

GDPR badgeAs you may already know, the EU General Data Protection Regulation (GDPR) will be coming into effect on May 25th, 2018 and all schools in the European Union will need to review their software providers for compliance with GDPR.

Schools will need to ensure that software companies have in place a contract setting out how they meet the GDPR’s requirements such as security, international data transfers, and individual rights including the right to erasure.

We’ve always taken privacy and security very seriously, and I’m pleased to see that Book Creator is GDPR compliant.

As part of our GDPR compliance we have made some small changes to the privacy policy for Book Creator, clarifying the right to have data deleted from Book Creator. I’m happy to say we have extended this right to all users including those outside of the EU.

For schools needing to review Book Creator please go to for our Data Processing Addendum and resources to help you with your compliance work.

Any questions? Post them in the comments below.

Related posts

2 Comments on “Is Book Creator GDPR compliant?”

  1. Hi Dan/Book Creator

    I was wondering. If a teacher (based in Denmark) logs in to Book Creator using either Google og O365, and then uses the QR code to get her students in, so they don’t use an e-mail – will the school then still have to make a GPDR agreement with you? I can’t really find the answer to that anywhere. I assume, that if teachers and kids all log in using Google or O365, the school will have to fill out the Data Processing Addendum, or?

    My school uses ( where we can use Book Creator (which I love by the way), but as a new Book Creator Ambassador, I’d like to be able to give the correct advice to schools, who don’t have, and instead log in using Google or O365.

    Thank you in advance!

    1. Hi Susanne,

      Good question! The schools should still complete (or at least review) the Data Processing Addendum as it covers how we process any personal data added to a book, such as text, photos, video or audio. This is relevant under GDPR even if the students use QR codes to sign in.
      Hope that helps!

Leave a Reply

Your email address will not be published. Required fields are marked *