Zoho CRM is on its way to GDPR Compliance
Hello folks,
GDPR has been the talk of the hour and we would like to ensure that this GDPR fever does not come in the way of your business and selling. There are several GDPR centric enhancements in Zoho CRM that will be released in a phased manner to all our users in the following weeks.
Designed to help you meet the privacy standards set by the European Union, these enhancements will provide a streamlined mechanism for you to collect, process and store your customer data in conformation with the GDPR.
So what is GDPR and how will it affect your business?
GDPR or General Data Protection Regulation is a landmark policy aimed at empowering citizens of the European Union regarding their personal data. With increasingly complex flow of information across the world, GDPR aims to give EU citizens more direct control on how their personal information is being processed in addition to improved data privacy.
GDPR not only applies to companies in the EU region but to any organization that collects or processes the data of EU citizens. If you are one of those organizations who collect or process data of EU citizens, the following enhancements in Zoho CRM are for you.
GDPR centric enhancements in Zoho CRM:
We have split GDPR requirements into Data collection, Data processing and Data Subject Rights. In the sections below, we state the GDPR requirements along with the respective enhancements in Zoho CRM that meet them.
Note: The Organization collecting customer data is referred to as "Data Controller"/"Controller", your customers are referred to as "Data Subjects" and Zoho CRM will be the "Data Processor".
1. Data Collection
GDPR demands that personal information collected from Data Subjects should be limited to what the Data Controller needs in order to deliver its services, and a legitimate need in case of requesting additional information must be demonstrated. It is also mandatory that you state the purpose and get clear consent when collecting personal information.
Consent must be explicit, where Data Subjects take an affirmative action (clicking on the checkbox, so no pre-ticked check boxes). Controllers are also expected to be transparent about the duration for which the data will be processed.
Consent Form: Consent is one of the cornerstones of GDPR, as the execution of any processing activity now depends on the consent provided by the Data Subject. So in-order to demonstrate compliance, it is mandatory that a Data Controller identifies Data Subjects who require consent and those who do not require it under criteria such as Legitimate interest, Vital interest, Public interest, Contract, Freely given consent and other basis. After identifying this, the Data Controller should get consent from Data Subjects who require consent and be able to provide proof of consent if needed.
The fully customizable consent form in Zoho CRM allows Controllers to get explicit consent in regards to:
- The purpose of data collection.
- Preferred communication channel.
- Duration for which the data can be processed or consent duration.
- Sharing information with connected services.
Consent from Data Subjects, in written declaration or orally obtained consent (through email or telephone) can be attached to the form using the Attachment option.
Once the Data Subject has submitted their consent, it's stored under the Data Subject's record details page for the purpose of official record and for the Controller to know their actionable items from the data provided. For example, if a Data Subject has explicitly stated that their preferred channel of communication is email, then they are not to be contacted through any other means.
Double Opt-in Mechanism: This is one more compliance feature which you can use when setting up webforms. Anytime a Data Subject submits their information through a webform, a double Opt-in email is sent to them to confirm their registration/sign-up.
Double Opt-in Mechanism: This is one more compliance feature which you can use when setting up webforms. Anytime a Data Subject submits their information through a webform, a double Opt-in email is sent to them to confirm their registration/sign-up.
Data source tracking: Data Subjects' information can be pushed into Zoho CRM from multiple sources which include direct sources like web-forms, and indirect sources such as imports, manual entries, APIs, and third-party integrations.
The source and additional details if any (like the URL, IP address and geo-location) will be documented in the record details page. The screenshot below shows a new section called Data Privacy, under which Data source and the respective consent details are populated.
2. Data Processing
Information provided by a Data Subject can only be processed in a lawful basis. There is significant emphasis on the fact that all processing activities must be carried out securely to ensure that personal information is not exposed.
Marking Personal fields - fields containing PII (Personally Identifiable Information): Data Controllers can mark fields containing personal information as Personal fields and set a sensitivity level (High and Low). Based on the privacy preference, the Controller can choose to restrict these fields from certain processing activities such as exports, APIs and connected services.
There are two cases when data is being processed via connected services:
There are two cases when data is being processed via connected services:
Case 1 - Data Subject has not consented to their data being shared with any connected services. In such a case no information of theirs will be shared with any of the integrated services of Zoho CRM.
Case 2 - Data Subject has consented to their data being shared with connected services but there is an organizational restriction in sharing PIIs. In such a case the fields with PIIs will be not be processed in APIs and connected services.
With regards to Zoho connected services (Zoho products like Books, Desk, Campaigns, etc.) consent provided in one product will apply across all integrated Zoho products.
Encryption At Rest (EAR): Enterprise users have the option of Encryption At Rest for Personal fields.
Audit log and timeline for customer records: The Data Controller can monitor the processing activities done on a Data Subject's personal information.
Consent Management: The consent management system helps the Controller to keep track on the consent status of their Data Subjects. The system helps users identify Data Subjects who are yet to provide consent and immediately allows for sending an email with the consent form link. Consent can be obtained through webforms, consent form, portals and offline consent (Email or phone call).
The screenshot below is a consent dashboard showing the various consent statuses. Clicking on them will get you a list of all Data Subjects with their particular consent status.
3. Data Subject Rights
GDPR comes with a slew of rights which EU Data Subjects can exercise at any time which must be addressed in a month's time. The data request management in Zoho CRM lets the Controller keep track of all data requests to address them in a timely manner. The data requests raised is also maintained under each Data Subject's record details page so that the Controller is informed on any pending requests.
The Data Subject can exercise their rights through the consent form, portal, or offline through email and phone calls.
Zoho CRM helps Controllers address these data requests through the following options:
Access (Right to View): Using Zoho CRM's email feature, a template consisting of all customer information fields can be quickly created, which can then be sent to your customer upon request.
Rectify (Right to Rectify): Customer specific information can be exported and sent to the customer for rectification and the same can be updated.
Export (Right to Portability): Customer specific information can be exported, attached to an email and sent to a customer in a machine readable format, all without being downloaded on to your device.
Stop Process (Right to Stop Processing): Once a customer exercises this right, the corresponding record will be locked preventing further processing.
Erase (Right to be forgotten): Once exercised, the customer's record will be locked for the duration of the retention period defined in the Data controller's terms of service, after which the controller has the option to delete the customer information. Once deleted, the record will be moved to a blocklist and the re-entry of the same data will be prevented.
All of these enhancements will be made available for you in Zoho CRM in a phased manner. So watch this space for more updates!
Access your files securely from anywhere
Centralize Knowledge. Transform Learning.
All-in-one knowledge management and training platform for your employees and customers.
New to Zoho Recruit?
Zoho Developer Community
New to Zoho LandingPage?
Zoho LandingPage Resources
New to Zoho Survey?
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Bigin?
Topic Participants
Aishwarya EK
Bueller Bueller
Thomas iwant2help
Bala Ganesh
Sunderjan Siddharth
Sticky Posts
Good news! Calendar in Zoho CRM gets a face lift
Dear Customers, We are delighted to unveil the revamped calendar UI in Zoho CRM. With a complete visual overhaul aligned with CRM for Everyone, the calendar now offers a more intuitive and flexible scheduling experience. What’s new? Distinguish activitiesEnhancement to ICR’s field prompting: Preferred data extraction using advanced field prompting
Dear Customers, We hope you’re well A quick background Intelligent Character Recognition (ICR) comes as part of Zia’s optical recognition capability called Zia Vision. When we introduced it last April, the data extraction was training-based and was applicableZoho CRM's sales trend and sales follow-up trend dashboards are now customizable
Dear Customers, We're here with good news! Sales trend and sales follow-up trend are two system-defined dashboards that help you understand trends and anomalies in your sales outreach and conversion efforts. They use Zia's intelligence to identify patternsIntroducing Multiple Sandbox Types and Support for Module's Data Population
Register here for the upcoming Focus Group webinar on Multiple Sandbox | Help documentation to learn more about the new enhancements Hello everyone, Sandbox in CRM is a testing environment for users to create and test new configurations like workflowVoC in Zoho CRM is now data savvy: Explore response drilldown, summary components and participation in CRM criteria
VoC has all the goods when it comes to customer intelligence—which is why we're constantly enhancing it. We recently added the following: A customer drilldown component that shows you the list of prospects and customers behind a chart's attribute Expanded
New to Zoho TeamInbox?
Zoho TeamInbox Resources
Zoho CRM Plus Resources
Zoho Books Resources
Zoho Subscriptions Resources
Zoho Projects Resources
Zoho Sprints Resources
Qntrl Resources
Zoho Creator Resources
Zoho CRM Resources
Design. Discuss. Deliver.
Zoho Show Resources
Get Started. Write Away!
Writer is a powerful online word processor, designed for collaborative work.
Zoho CRM コンテンツ
-
オンラインヘルプ
-
Webセミナー
-
機能活用動画
-
よくある質問
-
Ebook
-
-
Zoho Campaigns
- Zoho サービスのWebセミナー
その他のサービス コンテンツ
Nederlandse Hulpbronnen
ご検討中の方
Recent Topics
kanban view for client portal
Are kanban views an option for client portals? Access to Kanban views in the client portals would solve some mobile-compliant issues I have with the UI. Kanban functions very nicely on mobile and would be a super asset for my clients and vendors as theyCredit Card Pre-Authorization with later Capture/Settlement
We really enjoy the convenience of being able to pay off a customer's invoice using our Auth.Net integration with Zoho Books. Unfortunately, we can only take advantage of this feature with a small percentage of our customers as it leaves a gaping holeZoho Cliq not working on airplanes
Hi, My team and I have been having this constant issue of cliq not working when connected to an airplane's wifi. Is there a reason for this? We have tried on different Airlines and it doesn't work on any of them. We need assistance here since we are constantlyZoho Sign 2025–2026: What's new and what's next
Hello! Every year at Zoho Sign, we work hard to make document signing and agreement execution easy for all users. This year we sat down with our head of product, Mr. Subramanian Thayumanasamy, to discuss what we delivered in 2025 and our goals for 2026.Work Orders / Bundle Requests
Zoho Inventory needs a work order / bundle request system. This record would be analogous to a purchase order in the purchasing workflow or a sales order in the sales cycle. It would be non-journaling, but it would reserve the appropriate inventory ofIzettle or Sumup Integration for Zoho Books.
The Stripe & Square clearing works great in Zoho Books. Any further integrations planned in the future for Izettle or Sumup? These card processors are very common for taking payments with a card reader.Train Zoho Answer Bot Based on Customer
Hi all, Is it currently possible to mark Help Centre articles to a specific customer, and restrict the answer bot to only use relevant information if it is either marked as "General", or tagged for the specific customer in question? We currently haveDetailed list of scoring rules in Zoho CRM
Good morning Zoho community, warm greetings The reason for my message today is that I have a problem with my CRM, which I will explain below: Our organization has scoring rules designed to rate our potential customers or leads in the application basedTrying to access records in a custom module in Zoho Desk and not having luck
I've built a custom module in Zoho Desk and am using a custom function to query the records in the module and I'm not having any luck. The only way I have found to retreive a record is by getting it by its recordID (the long zoho assigned one). The functionComposite items inside of composite items; bill of materials needed
Hi Zoho and Everyone, I am evaluating whether Zoho Inventory will work for my small business. I grow and harvest herbs and spices but also get from wholesalers. I use all these items to make herbal teas, but also sell them as individual items on my Shopify store and Etsy. I discovered the composite item bundling and am wondering if I could get some assistance since there is no bill of materials: Our herbal company's best selling tea is a sleepytime tea. Sleepytime Tea can be purchased in three weightsZOHO Books Smart Accounting Software for Travel Agency
Dear Travel partner, Contact for Travel Agency Accounting Setup & Training Vansh Travel (ZOHO Books Authorised partner) Email: info@vanshtravel.com Mo: +91 98984 95155 Please find PDF452 Mailbox delivery restricted by policy error
We have been testing Zoho desk for about a week now and have been forwarding emails in via an Exchange Online Mail flow rule without issue until yesterday. Suddenly yesterday morning we started getting the vast majority of the emails stuck in PendingSend Email reply on behalf of Agent
Hi, When using the send email reply via the API I can set the reply on behalf of the customer by using impersonatedUserId in the header of the API call. Is there a way to do this for Agents too? I need to be able to send an email reply on behalf of anSharing Tickets to a team within a department
Hi there, We have a need for one department to be able to share tickets to a specific team within a department, I'm wondering if this is possible? All the shared tickets are going into the 'Shared Tickets' view for the whole department but is there aRemoving To or CC Addresses from Desk Ticket
I was hoping i could find a way to remove unnecessary email addresses from tickets submitted via email. For example, a customer may email the support address AND others who are in the helpdesk notification group, in either the TO or CC address. This resultsDo not use isnull()
Does not always return booleans. Can also return null. Never use this function. Just use var==null instead.Organization wide Account and Contacts Visibility/Sharing Capabilities?
Has anyone figured out a way to make visibility or sharing of Accounts and Contacts to be available across the entire organization without having to have every individual user edit their Sharing permissions? For our sales folks they need to be able toIs there a way to configure dark mode for Campaigns emails that go out to customers?
I've found a lot of information on how to configure dark mode for my (The user) personal Zoho workspace and email, but is there any way to edit dark mode settings on emails that we send out to customers via campaigns? We sent out a test email the otherWhen Does WorkDrive integrate with Books?
When Does WorkDrive integrate with Books?How do I import Connected Records for a Deal?
Can you point me to an example of the CSV file that would add related records to an existing CRM Deal? I imported a Deal, then tried importing a connected record using a unique ID that references the Deal ID, but it doesn't attach it to the Deal recFSM integration with Books
Hi, I have spent a few months working with FSM and have come across a critical gap in the functionality, which I find almost shocking....either that, or I am an idiot. The lack of bi-directional sync between Books and FSM on Sales Orders/ Work OrdersHow to close an estimate ?
Hello, I have created estimates, and converted them to invoices to get 50% payment. Now I have 2 cases where the estimate stills shows status partially invoiced, however: 1. for one of them, project stopped half way, so the remaining part will never bePower up your Kiosk Studio with Real-Time Data Capture, Client Scripts & More!
Hello Everyone, We’re thrilled to announce a powerful set of enhancements to Kiosk Studio in Zoho CRM. These new updates give you more flexibility, faster record handling, and real-time data capture, making your Kiosk flows smarter and more efficientHow do you print out the invoices comments
I have some invoices where i need to print out the comments that show when reminders and etc were sent how do we print those out in Zoho Books.Unable to load a specific image
Hi I am trying to upload an svg file, which reports that there is "a problem with the file", but does not say what sort of problem. I can't find anything which says which files are supported, so it may be it does not support svg. (which would be a real shame) The file itself will open in either Firefox or Chrome without problem. For the moment I am using a png file, which does not zoom well of course. DavidWhy does the Address field show the wrong map location even with a correct Pincode?
I am noticing an issue with the Address field map in Zoho Creator. When I enter a city name that exists in multiple locations within the same state, the map sometimes points to the wrong area even if I have entered the correct Pincode. Currently, it seemsUploaded files are not included when using "Include user submitted data" in Email Notification
In Send Email notification workflow in Zoho Creator, there is an option called "Include user submitted data" which allows the email to contain all the form submission details. However, when this option is enabled, files or images uploaded through FileBooks <-> CRM synchronisation with custom Fields
Hello, We are synchronising Books Customers with CRM Accounts. In CRM Accounts I set up last year a "segments" multiselect field shown below In Books, I set up a custom multi-select field with the same value as in the CRM And set up the synchronisation inside Books. Want to synchronise the Books Segments with the CRM Segments, but the later doesn't exist, and another non-existing is there ?! First, I don't understand where the field Segmentation is coming from. Second, I set CRM Segmentation to syncCRM x WorkDrive: We're rolling out the WorkDrive-powered file storage experience for existing users
Release plan: Gradual rollout to customers without file storage add-ons, in this order: 1. Standalone CRM 2. CRM Plus and Zoho One DCs: All | Editions: All Available now for: - Standalone CRM accounts in Free and Standard editions without file storageArchive Option in Conversation View
Hello, I have a suggestion\request to add an "Archive Thread" button in conversation view of Zoho Mail. The best suggestion I have is to put an "Archive Thread" button next to the "Label Entire Thread" button in conversation view. Most users don't justOutlook/Hotmail Blocking Zoho SMTP IPs (S3150)
We are currently facing a serious deliverability issue with Zoho SMTP while sending transactional OTP emails for our production application. Emails sent to Outlook / Hotmail addresses are being rejected with the following error: 550 - 5.7.1 Unfortunately,Outlook is blocking incoming mail
Outlook is blocking all emails sent from the Zoho server. ERROR CODE :550 - 5.7.1 Unfortunately, messages from [136.143.169.51] weren't sent. Please contact your Internet service provider since part of their network is on our block list (S3150). It looksTrack Marketing Automation Campaigns in Zoho CRM
Hello, I've been searching but haven't found the exact answer to this question. I am looking to track Marketing Automation email campaigns and activities inside of Zoho CRM. Use Case: Action: Prospect Submits A Lead Form Outcomes: Prospect created inZoho Social API for generating draft posts from a third-party app ?
Hello everyone, I hope you are all well. I have a question regarding Zoho Social. I am developing an application that generates social media posts, and I would like to be able to incorporate a feature that allows saving these posts as drafts in Zoho Social.Temporarily rate limited due to IP reputation.
We have suddenly started receiving the following Mail Delivery Status Notification: Diagnostic-Code: 4.7.650 The mail server [136.143.184.12] has been temporarily rate limited due to IP reputation. For e-mail delivery information, see https://aka.ms/postmasterIncorrect Functioning of Time Logs API (Version 3)
We need to fetch the list of time logs for each task for our company internal usage. We are trying to achieve it by using the next endpoint: https://projects.zoho.com/api-docs#bulk-time-logs#get-all-project-time-logs Firstly, in the documentation theIMPORTANT: It doesn´t search for letters with portuguese characters.
Some of my articles have for example the word "vídeo". But if I search for "vídeo" it doesn´t find them. If I search for "video" it does find them. Idealy, it should find the articles either way. But if I have to choose, it would be better to find theIMPORTANT: It doens´t show full article name on search - Should add line break
When we search for articles, it doesn´t show the full name. There should be a line break so the user can see the full article name, otherwise the user can´t know if that´s the article he/she is looking for. This is very important, otherwise the user hasZoho Books - Payment Gateway - Revolut
Hi Books Team, My feature request if to include the popular platform Revolut as a payment collection option on invoices in Zoho Books. Please upvote if you are also looking for this option.Zoho Books | Product updates | January 2026
Hello users, We’ve rolled out new features and enhancements in Zoho Books. From e-filing Form 1099 directly with the IRS to corporation tax support, explore the updates designed to enhance your bookkeeping experience. E-File Form 1099 Directly With theNext Page