Privacy and Personal Data Protection
The EU-U.S. and Swiss-U.S. Privacy Shield frameworks are the European Commission-approved mechanisms that enable the transfer of personal data from Europe to the U.S. and Switzerland to the U.S. in compliance with European and Swiss data protection laws. As the successors to the EU-US and Swiss-US Safe Harbors, the Privacy Shield frameworks introduce stronger obligations on the handling of data from the EU and Switzerland; and, provide greater protections for individuals. We value your trust and share in the same concerns over the privacy of you and your data. As part of our ongoing commitment to privacy and protecting our client’s data, Brightidea has certified its compliance with the EU-U.S. and Swiss-U.S. Privacy Shield frameworks to the U.S. Department of Commerce and has been added to the Department of Commerce’s list of self-certified Privacy Shield participants. Our certifications confirm that we comply with the Privacy Shield principles for the transfer of European and Swiss personal data to the United States.
As part of our Privacy Shield certifications, Brightidea agrees to resolve privacy-related issues in an expedient manner through cooperation with European and Swiss data protection authorities and binding arbitration. In addition, the Privacy Shield frameworks align closely to the recently adopted General Data Protection Regulation (GDPR), enabling Brightidea to update its internal policies in advance of the May 2018 GDPR effective date.
Brightidea clients will have a choice of data transfer mechanisms: the Privacy Shield frameworks and entry into our standard Data Processing Agreement (DPA) that includes the European Commission-approved Standard Contractual Clauses (“Model Clauses”). Brightidea clients that wish to enter into our DPA, please email us at firstname.lastname@example.org.
Brightidea employs state of the art security to protect your data, and our Privacy Shield certification and DPA are designed to ensure that any data transfer from the European Economic Area (EEA) is done in strict compliance with applicable data security and privacy laws.
If you have any additional questions, please email us at email@example.com.