EU-U.S. Privacy Shield: What You Need to Know
Data privacy is ever changing. And for us, that means that our processes and procedures are always evolving as well.
The European Union has officially adopted the EU-U.S. Privacy Shield, which means that companies like FormAssembly are now held to additional standards when handling European customers’ data.
Working with third party auditor, TRUSTe, we have made adjustments to our privacy protocols, and are now able to boast compliance with the new privacy standards.
With all of that being said, you may be wondering what this means for you (and your data). So, here is our breakdown of what the EU-U.S. Privacy Shield is, what we did to become compliant, and what that means for you.
What is the EU-U.S. Privacy Shield?
Prior to the EU-U.S. Privacy Shield, data governance between the EU and U.S. was maintained by the Safe Harbor Framework.
According to the Information Technology Industry Council (ITI), the Safe Harbor Framework, “…was the primary – and often sole – mechanism under which more than 4,400 companies of all sizes, and across all industries, legally transferred data from Europe to the United States for the past 15 years.”
However, in October of last year, the Safe Harbor Framework was invalidated by the Court of Justice of the European Union, making way for the approval of the EU-U.S. Privacy Shield in early July of this year.
The new EU-U.S. Privacy Shield requires:
- Added security obligation on companies handling data
- Safeguards and transparency in relation to government data access
- Increased protection of European individual rights
- Annual review mechanism
What does this mean for your data?
For our European customers, this means that you are able to rest assured, knowing that FormAssembly is working in compliance with the new standards, upholding your users’ data privacy rights.
Learn more about FormAssembly’s commitment to safety and security by viewing our features, like HIPAA compliance, spam protection, and TLS 1.2 encryption.