The 25th of May, 2018, was a red letter day— it was the day the General Data Protection Regulation (GDPR) officially became a law.

At Itemize, we have always taken seriously the spirit of GDPR— and the protection of every person’s data. Here is a summary of the steps we’ve taken to ensure we comply specifically with the new regulation.

Be assured that Itemize only collects the data needed to perform the services we are contracted to provide, and we are committed to our users’ rights to privacy.

The following lists the steps we’ve taken to increase our scrutiny in light of the new regulations:

Data Mapping

Status: Complete 

We mapped the data flow of all data in the company to kick off this process. The data maps are available to our team internally to help them understand where data is and to help ensure a person’s data is managed throughout its life in our systems.

Privacy Policy

Status: Complete

The General Counsel updated the Privacy Policy to account for GDPR.


Status: Complete

Our website has had a cookie notification since the last site update. We do not collect personally-identifiable information with our cookies, but do want to acknowledge the use of cookie technology.

Deletion or Modification

Status: Available

A user has the right to request that we delete all of their personal data or that we modify some of their data. Users who wish to inquire about the right to be forgotten please reach out to us at any time at

Access and Portability

Status: Available

A user can request access to a copy of the personal data that we have. Users who wish to request portability can reach out to us at any time at

Related Post

Cookie-less visit tracking