As a European and independant company, Lengow welcomes the GDPR as an important step forward to protect data across the EU, as it harmonizes data privacy laws and regulates how companies collect, modify and delete data of EU citizens.

Our various departments are therefore actively working towards full GDPR compliance and interact with our various partners to provide our clients with the safest experience.

High level of security guarantee

Lengow already employs strict policies and procedures around security and data management. As mentioned in our infrastructure and support page, our data are stored exclusively in Europe by providers guaranteeing a high level of security.

Register of processing operations

We’re documenting the various processes for collecting and processing personal data across our various departments, clients, partners and providers. In addition, our customers will receive an update of our general conditions of use. Besides, we are making sure we are part of a compliant ecosystem by checking that any providers we use as sub-processors are GDPR compliant.

Internal process

An internal committee with Technical, Product, Finance and Marketing team members was set to centralize privacy topics and processes, identify data types and get the importance of privacy and data protection across to the company.
Besides, team members have been trained by legal and privacy experts.
The access to sensitive data is limited to a small number of people among Lengow according to a strict policy.

Nomination of a DPO

A DPO ( Data Privacy Officer) will be shortly nominated, in the meantime, should you have any questions regarding GDPR / Privacy issues, please send an email to

What Lengow is doing

We are fully committed to complying with GDPR and our legal experts have closely analysed requirements. As one of your technology provider, we are on the way to full compliances before the end of May 2018 and are actively working on the following topics.


  • When is the GDPR coming into effect?
    The GDPR will be in force from May 25, 2018.
  • Who does the GDPR affect?
    The GDPR affects organizations based in EU but also apply to organisations outside EU if they offer good or services to EU citizens.
  • What does the GDPR regulate?
    The GDPR regulates the processing of data such as : collection, storage, transfer, use or deletion of personal data about EU citizens.
  • Is Lengow going to be compliant?
    Yes, we are actively working on being GDPR compliant.
  • What do Lengow use personal data for?
    We only use personal data according to the contract signed with our clients and their instructions. We value privacy and do everything to protect it.
  • What is the difference between a data processor and a data controller?
    A controller determines the purposes, conditions and means of the processing of the personal data, whereas the processor processes data on behalf of the controller.
  • Where can I find additional information about GDPR?
    You can find additionnal information about GDPR on the European Commission website

Contact us

Should you have any questions about GDPR and how it impacts you, as a Lengow client, do not hesitate to contact us:

Increase your sales with Lengow