GDPR was designed to protect and empower EU citizens when it comes to data privacy. In short, it requires that every company that handles Personally Identifiable Data (PID) has a process to ask for permission before PID is stored, and to remove the PID should the individual request this.
Pace receives slightly different data from its different PMS interfaces. But is, in all cases, fully compliant with GDPR regulation.
In some cases Pace receives no PID and is therefore outside the scope of GDPR altogether. In other cases, it does receive PID but is compliant in the following way:
NB. Each layer is responsible for not passing data to third parties without appropriate agreements in place. The PMS is therefore responsible for making sure that there is an GDPR agreement in place with Pace, or that PID is not transmitted to Pace.