RStudio and the GDPR – What You Need to Know
The General Data Protection Regulation (GDPR) protects the privacy of individuals within the European Union and addresses the export of personal data outside the EU. Although it is an EU regulation, RStudio has adopted its guidelines for all personal data we control or process.
For those interested in understanding what we do with personal data in less formal language, here is an overview we hope you will find useful.
- Our treatment of personal data provided by you on our websites complies with the GDPR. Our websites, including rstudio.com and our hosted services shinyapps.io and rstudio.cloud, only collect information you give us by visiting our pages (IP addresses) and completing our forms (requests for information, support tickets, event or account registration, billing, etc.).
- We do not control or process data you upload to our hosted services, shinyapps.io or rstudio.cloud. Any data you upload to applications you create and make available through shinyapps.io or data you upload to analyze in rstudio.cloud is entirely controlled and processed by you. Any data you choose to persist in these services is stored on Amazon’s AWS service through our arrangement with them and is subject to their data security policies and privacy practices.
- Your data used with RStudio Software installed on computers you control is your responsibility. No agreement with us specific to the GDPR and RStudio Software is necessary. Any data you use with RStudio Software – including the open source or Pro versions of the RStudio IDE and Shiny Server, or RStudio Connect – is controlled and processed entirely by you. We do not have any visibility into your user data or to any data you control or process on your computers.
- We do not request any personal data from you when you download our free and open source Software from our website. However, as described above, we capture IP addresses of website visitors, including logging your IP address when you download RStudio Software.