Points’ Approach to GDPR

Data protection and security have always been at the core of our business at Points.com Inc.(Points) We are dedicated to security and privacy by adopting industry best practices to protect your data. As a part of this, we have been working to ensure our compliance with the EU General Data Protection Regulation (GDPR).

What is the GDPR?

The GDPR is a new European Union (EU) law that applies to all residents of the European Economic Area (EEA), and comes into effect on May 25th, 2018. GDPR is designed to ensure all EEA residents have greater control over how their personal data is processed, stored, used, and disposed. The GDPR applies to any company that handles the personal data of residents in the EEA.

What has Points done to prepare for the GDPR?

Points has:

Points has developed, and will continue to develop and improve upon, our GDPR compliance program. This will help us to manage any necessary and appropriate changes that may be required as GDPR best practices develop and evolve.

Learn More About Points & GDPR

For more detailed information about Points, GDPR and your data, please refer to our Terms of Use and Privacy Policy online at:

Points.com Inc. Terms of Use
Points.com Inc. Privacy Policy
Points.com Inc. Subprocessor List

Still have questions?

We’re happy to help! Please contact DPO@points.com