What is GDPR and how does it affect the integration?

In April 2016, the General Data Protection Regulation (GDPR) — a joint proposal by the European Commission, European Parliament, and the Council of the EU which provides individuals with even greater control over the collection and use of their personal data- was adopted by the European Union.

Mailchimp for Salesforce does not store any customer information (given its primary role is to sync data between the two systems). Customer data is stored in Salesforce and in Mailchimp. Below are two links on GDPR compliance for Salesforce and Mailchimp.

The Mailchimp for Salesforce application never independently calls into your Salesforce environment. This means that we don't use up inbound API calls (typically 15,000 / 24 hours) or access your customer data. The only calls that are made back into the Salesforce environment are to obtain metadata in order to support list view imports and page layout configuration. Both of these actions are driven in real-time by your Salesforce users (i.e. we don't store any of your Salesforce connection details or make calls into your Salesforce environment independently of a direct request coming from your Salesforce environment).

No personally identifiable information (PII) is sent to Mailchimp without your permission or action. You can choose not to send any custom data to Mailchimp or even any subscribers. Any PII is viewable within the Mailchimp application, under subscriber custom fields. There are no other hidden fields that contain PII. More details on what is sent can be seen by viewing the technical Mailchimp API documentation https://mailchimp.com/developer/ (which is used by Mailchimp for Salesforce).

All data flowing between systems is SSL encrypted.

We are not in a position to disclose what metadata we extract due to commercial confidence, other than to say that no user information is retrieved. You can choose not to even allow us access to that metadata if you choose not to use the data wizard with list views or bulk import from a lead or contact from a list view. Please note that the type of metadata we extract may change as Salesforce and our application evolve.

All data held by our application and stored within your Salesforce environment can be found in objects starting with the namespace mone. To reiterate, we don't connect into Salesforce; all connections are outward bound. This just means Mailchimp cannot call back into Salesforce and query your data.

Related Articles