GDPR is a EU regulation which was adopted on the 27th April 2016 and becomes enforceable on 25th May 2018. The regulation will replace the UK Data Protection Act 1988, the UK implementation of the EU Data Protection Directive 95/46/EC. The The European Union (Withdrawal) Bill, if passed and granted royal assent, will convert the GDPR regulation into UK law.

2sms modified its ISO27001:2013 certified policies and procedures to provide compliance with the enhanced requirements of GDPR. 2sms has gained Cyber Essentials Plus certification.

2sms has introduced a revised Privacy Policy, and a new Data Processing Agreement. Customers will be asked to provide consent to 2sms to hold and process personal information necessary for the delivery of our services. 2sms provides a process to make Data Subject Access Requests within its SMS+ portal.

2sms has invested in passing the ISO 17024 accredited Certified EU General Data Protection Regulation Foundation from IBITGQ. Tim King, a Certified EU GDPR Practitioner (ISO 17024-certificated) is Data Protection Officer at 2sms.

GDPR resources

Privacy Statement

Data Processing Agreement

Data Subject Access Request (customers – login required.)

Data Subject Access Request (non-customers)

Data Protection Officer

The UK Information Commissioner’s Office has additional information.

Scroll to Top