EU Privacy Shield FrameworkCompliance
General Data Protection Regulation of the European Union or GDPR is the European Union’s new, comprehensive privacy law that will take effect on May 25, 2018. We see Privacy Shield certification as the first step in a two-step process toward a comprehensive EU data protection strategy. We will be updating our site as we complete bringing our security and compliance measures and agreements into alignment with GDPR.
EU-U.S. Privacy Shield Framework
The EU-U.S. and Swiss-U.S. Privacy Shield Frameworks were designed by the U.S. Department of Commerce, and the European Commission and Swiss Administration, respectively, to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States in support of transatlantic commerce.
The Privacy Shield program, which is administered by the International Trade Administration (ITA) within the U.S. Department of Commerce, enables U.S.-based organizations to join one or both of the Privacy Shield Frameworks in order to benefit from the adequacy determinations.
To join either Privacy Shield Framework, a U.S.-based organization is required to self-certify to the Department of Commerce and publicly commit to comply with the Framework’s requirements.