Privacy and data laws

• Crisp EU GDPR compliance status

  Learn how Crisp handles GDPR compliance, data processing, privacy rights, and related security practices. The European Union’s General Data Protection Regulation (GDPR) is a regulation that aims at harmonising EU Member State’s data privacy laws. This article describes the GDPR compliance status of Crisp. GDPR compliance illustration (https://storage.crisp.chat/users/helpdesk/website/-JzqEmX56venQuQw4YV8/bf066c5e-5b83-444b-972c-a8b3cd9cc73a.png =1000xauto)Popular

• Crisp Cookie Policy

  Learn what is the Crisp Cookie Policy. The website, Crisp.chat, does not collect personal identifiable cookies when you visit us. We do collect anonymous information, such as, for example, how often website visitors engaged with our website. Crisp collects only the necessary and functionality cookies related to its software app and chatbox in order to make those products available to the users.  By default, Crisp does not collect any tracking cookies. Not via its own websPopular

• How to sign the GDPR Data Processing Agreement (DPA)

  Learn how to download, sign, and upload your GDPR Data Processing Agreement with Crisp. Companies using Crisp to handle European user data may need to sign a Data Processing Agreement, also called a DPA. In Crisp, DPA contracts are managed per workspace and must be uploaded by a workspace owner. Example of a Crisp Data Processing Agreement (https://storage.crisp.chat/users/helpdesk/website/-/8/7/a/e/87ae2703583ac800/cleanshot-2026-02-02-at-15263010xcjlm.png =1000xauto)Some readers

• Crisp compliance status with SOC2

  "Information security is a reason for concern for all organizations, including those that outsource key business operation to third-party vendors (e.g., SaaS, cloud-computing providers). Rightfully so, since mishandled data—especially by application and network security providers—can leave companies vulnerable to attacks, such as data theft, extortion and malware installation. At Crisp we consider security very seriously, everything has been detailed over this article (https://docs.crisp.chat/Few readers

• Magic Browse feature compliance with GDPR

  Learn how Magic Browse works and how Crisp helps you keep co-browsing privacy-friendly. Magic Browse lets your team guide customers through your website by viewing the page they are currently browsing. It is passive by design, scoped to your website, and includes privacy controls for sensitive information and user consent. Magic Browse renders the HTML and CSS of your websitFew readers

Security on the Crisp Platform

• How to enable Two Factor Authentication (2FA)

  Learn how to enable Two-Factor Authentication for your Crisp account and enforce it for your workspace. Two-Factor Authentication adds a second verification step when signing in to Crisp. It is optional by default, but strongly recommended for every operator because it helps protect your workspace even if a password is compromised. color 0080dd (WhatFew readers

• How Crisp manages security on its services

  Learn where to review Crisp security practices and the main resources related to platform security. Crisp takes account, workspace, infrastructure, and visitor data security seriously. The most detailed and current technical security information is maintained in Crisp's Security Practices documentation. For the detailed security documentation, read Security Practices in theFew readers

• Crisp compliance with ISO 27001

  "Information security is a reason for concern for all organizations, including those that outsource key business operation to third-party vendors (e.g., SaaS, cloud-computing providers). Rightfully so, since mishandled data—especially by application and network security providers—can leave companies vulnerable to attacks, such as data theft, extortion and malware installation. At Crisp we consider security very seriously, everything has been detailed over this article (https://docs.crisp.chat/Few readers