GDPR – What You Need to Know




The General Data Protection Regulation (GDPR) is the largest expansion of privacy laws in the EU/UK in 20 years, and harmonizes all data privacy laws across Europe.  StarRez welcomes these changes and ensures full compliance when the GDPR becomes law. Our goal is to maintain your trust and confidence when handling your data, and that of your customers. StarRez promises to protect the individual’s right to privacy, and implement safeguards that prevent the misuse of private information.


Rafe Hart, Development Manager at StarRez

“The protection of our customer’s data and privacy is of the utmost importance at StarRez. The completion of our GDPR assessment will further enforce that commitment.”


Who does it apply to?

The laws apply to any institution doing business with EU and its citizens, such as accommodation providers accepting residents from those countries. The laws began to be enforced on 25th May 2018.


What is StarRez compliant to?

StarRez is committed to meeting the legislated privacy requirements in all the countries in which it operates, and in particular the US, UK, and Australia. These include:

  • US Federal Trade Commission Act, FERPA, and applicable state laws
  • EU-US Privacy Shield Framework and Swiss-US Privacy Shield Framework
  • EU General Data Protection Regulation (GDPR)
  • Australian Privacy Act 1988


How is this achieved?

We undertake a wide range of actions year round to maintain good security and privacy, and you can read about them in depth by reviewing our GDPR Whitepaper.  In brief, we do this by:

  • Providing our customers with trusted, high security environments, compliant to PCI DSS standards, which are monitored for security events 24/7
  • Encrypting the data at rest and in transmission using strong encryption protocols
  • Engaging external security consultants to provide quarterly vulnerability scanning and annual penetration testing
  • Restricting access to data only to those with a valid business reason, and for limited periods
  • Meeting all GDPR requirements for rights to access, rectification and erasure


What are the penalties if you are not compliant?

The maximum penalty for infringing these laws is the greater of €20 million or 4% of worldwide turnover, in addition to any action by the subjects to whom the data concerns. If an institution has a physical presence in the EU, GDPR fines can be enforced directly by any of the EU member states.


What do you need to do?

Customers in the EU need to sign a copy of Model Contract Clauses with StarRez, so that we can provide you with support from our teams in Australia and the US. Customers outside the EU do not need to sign these documents with us, but will enjoy the same levels of protection from our systems and processes.

If you have any questions regarding our data privacy policy, information security or other measures, please don’t hesitate to contact us at privacy AT

Demo Request

We're SOC 2 CompliantStarRez is SOC 2 Compliant
Docusign and StarRez IntegrationDocusign StarRez Integration Partnership
California Consumer Privacy Act (CCPA) - Effective January 1, 2020CCPA – Get Ready to Comply
General Data Protection Regulation (GDPR)GDPR – What You Need to Know
University of MississippiOle Miss Increases Dorm Security, efficiency with StarRez
University of KentuckyStarRez Room Selection Feature to Improve University of Kentucky Housing Application
University Business Magazine UKStarRez Takes Student Accommodation to the Next Level
Boston UniversityRoom Selection Goes Online with StarRez
Improve Your Move-in Process Next YearWays to Improve Your Process for Next Year
StarRez / Colleague APIStarRez/Colleague Integration API Available
StarRez / InCommon MemberStarRez Becomes InCommon Federation Member
University of PennsylvaniaUsing StarRez Mobile Checkin for Move-ins w/ iPads
Rider UniversityRider Digitizes Online Housing Selection with StarRez
Rochester Institute of TechnologyRIT Matchmaking with StarRez
Jenzabar and StarRez PartnerJenzabar and StarRez Deliver Cohesive Technology for Residential Life
Georgia Institute of TechnologyGeorgia Tech - StarRez Delivers "The Best Housing System Available"
University of IowaIowa Offers Students "" Roommate Matching with StarRez