I've been asked by our legal team at the company about how Marketo technically complies to the GDPR
- Access Control: Who is accessing the data and it is from the office or at home? Should it be allowed only at the office?
- Logs: For how long can we keep the logs of a record?
- Is the data being encrypted when saved or it can be stolen as plain text for being in the cloud?
- Deletion of inactive leads after certain time is a must?