The General Data Protection Regulation (GDPR) (EU) 2016/679 is a European Union law that protects personal data and privacy for individuals in the EU and the European Economic Area (EEA).
Data Processing Agreement
Bitrix24 works with many customers in the European Union, so we follow GDPR compliance rules and maintain a GDPR section on our website. Your Data Processing Agreement is accepted as part of our main Terms of Service .
Enter your GDPR compliance details.
To add your compliance information:
- Click the toggles icon in the top-right corner.
- Select Settings.
- Open the GDPR compliance tab.
- Enter the required details.
Data hosting inside and outside the EU
GDPR allows personal data to be processed outside the EEA if appropriate safeguards (Articles 45–49) are in place. However, we recommend that EU customers use these regional accounts:
- Bitrix24.eu
- Bitrix24.de
- Bitrix24.pl
- Bitrix.it
- Bitrix24.fr
These accounts are hosted in AWS data centers in Frankfurt, Germany, and are fully GDPR compliant.
Data for Bitrix24.com, Bitrix24.es, and Bitrix24.com.br is stored in the United States. Personal data processing for customers in Spain and Portugal is covered under the EU–US Privacy Shield framework. See the Data Processing Agreement for details.
GDPR compliance for employees and CRM data
If you work with employees or customers in the EU, they have specific rights under GDPR. To stay compliant:
- Enable consent for personal data processing in CRM forms and the live chat widget.
- Individuals can request a copy of their personal data stored in your Bitrix24 account. They can also request that you delete or anonymize their data.
To handle these requests automatically, you can use apps from the Bitrix24 Market.
