GDPR Notice

Effective Date: May 25th 2018
Our Commitment to GDPR


The General Data Protection Regulation (GDPR), is a European privacy law approved by the European Commission in 2016 and will go into effect May 25th 2018. The GDPR will replace a prior European Union privacy directive known as Directive 95/46/EC which has been the basis of European data protection law since 1995.

The GDPR is an attempt to strengthen, and modernize EU data protection law and enhance individual rights and freedoms, consistent with the European understanding of privacy as a fundamental human right. The GDPR regulates, among other things, how individuals and organizations may obtain, use, store, and remove personal data. In a nutshell, it’s giving EU citizens and residents control over their personal data while simplifying the regulatory environment for international business that takes place in the EU.

The Data Protection Principles include requirements such as:

  • Personal data collected must be processed in a fair, legal, and transparent way and should only be used in a way that a person would reasonably expect.
  • Personal data should only be collected to fulfill a specific purpose and it should only be used for that purpose. Organizations must specify why they need the personal data when they collect it.
  • Personal data should be held no longer than necessary to fulfill its purpose.
  • People covered by the GDPR have the right to access their own personal data. They can also request a copy of their data, and that their data be updated, deleted, restricted, or moved to another organization.


GDPR adds some new requirements regarding how companies should protect individuals’ personal data that they collect and process. It also raises the stakes for compliance by increasing enforcement and imposing greater fines for breach. Beyond these facts it’s simply the right thing to do. At Trevor McHaffie Marketing we strongly believe that your data privacy is very important and we already have solid security and privacy practices in place that go beyond the requirements of this new regulation.


Below is an overview of what we have done or are in the process of doing to meet the new regulation requirements.


We have conducted a company wide review of all our current data capture, processing and storage procedures.
In addition to the new changes listed in this notice we have updated our privacy policy and our cookie policy and we have added this GDPR notice.

We have notified all of our existing users of these all policy changes so that they may review and re-accept them if they wish to continue being a customer.


In efforts to fully comply with the GDPR we have take an in depth look at all the processes currently implemented across all our websites and tools. While HLS does in fact collect data from its visitors and its users across all of our websites we can definitively say that Higher Level Strategies Inc. does not “process data” on behalf of its customers. Since we do not process third party data a DPA is not needed.

As a product vendor we do offer tools for users and affiliates to refer new customers. In such cases the customers they refer chose to submit their own personal data, individually. Each customer is asked to agree with our terms and privacy policy accordingly. Users and affiliates do not upload third party data to any of our websites. There is also no need for a DPA for users of our plugins as we do not see any of your customer or prospect data as this is all controlled within your own website.

If you have any questions or concerns please let us know before using any of our Websites or Services..


At Trevor McHaffie Marketing we practice transparency internally and we believe that transparency extends to our customers. With our updated Terms of Service and Privacy Policy we openly describe what personal data we are collecting, why, how we use it, who we share it with and how long we store it.

We have always made an effort to keep the language in our Terms of Service and Privacy Policy as clear as possible and we have updated these notices to describe how we are respecting and protecting your personal data. We hope you find it concise, transparent, intelligible and easily accessible.


We’ve updated our cookie policy to provide you with complete transparency into what is being set when you visit our site and how it’s being used. On our cookie policy page you can also read about steps you can take in order to control how your browser handles cookies.

We’ve implemented a cookie consent form on all of our websites. This acceptance form is displayed to all visitors until accepted. The acceptance from is displayed for all websites, so you will be required to accept our policy for each of our sites individually. We log this action and maintain a record of your acceptance, should you ever request proof in the future.


We have reviewed and identified all the areas of Trevor McHaffie Marketing business where we are collecting and processing customer data. Using this matrix we have validated our legal basis for collecting and processing personal data and double checked that we are apply in the appropriate security and privacy safeguards across our entire infrastructure and software ecosystem. Our Privacy Policy identifies what we are doing with the data we collect and how we manage consent.


We have reviewed all third party vendors which we may use for processing of your data. As per our privacy policy, no data will be sent to providers who do not conform to GDPR compliance standards.

We are working with our customers to answer any questions and address any concerns regarding how we protect their personal data in accordance with the GDPR. If you have any questions, please don’t hesitate to contact us.