Home > Does SnapEngage comply with EU data protection requirements?
Categories: Security
(Last Updated On: )
About This Article
The purpose of this article is to provide a comprehensive overview of how SnapEngage complies with EU data protection requirements.
The easy and quick answer to that question is yes!
Our Commitment to the General Data Protection Regulation (GDPR)
The General Data Protection Regulation (GDPR, Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union. It also addresses the export of personal data outside the EU. When the GDPR took effect, it replaced the data protection directive (officially Directive 95/46/EC) from 1995.
SnapEngage worked actively to meet the GDPR requirements which became enforceable on May 25th 2018. If you want to find out more about how to be compliant with your own visitors, there are several GDPR articles available on our help website. Our DPA include EU model clauses. If you do not have a DPA with us, and would like to have one, please come and chat to us. The EU Model Clauses are standardized contractual clauses used in agreements between service providers (such as SnapEngage) and their customers to ensure that any personal data leaving the EEA will be transferred in compliance with EU data-protection law and meet the requirements of the EU Data Protection Directive 95/46/EC which is in effect until May 2018. The DPA describes our data processing practices.
For more information about GDPR and SnapEngage, please contact our support via email [email protected]
EU-US Privacy Shield Framework
Serving an international client base, SnapEngage is required to comply with EU data protection mechanisms when personal data is being transferred from the European Union to the United States.
SnapEngage does comply with the EU-US Privacy Shield Framework regarding the collection, use, and retention of personal information from European Union member countries. The Privacy Shield Framework was designed and set forth by the US Department of Commerce and thereupon deemed adequate and accepted by the European Commission.
The latter means that the EU-U.S. Privacy Shield Framework does comply with EU data protection requirements which translates to the fact that SnapEngage does comply with EU data protection requirements.
By joining the EU-U.S. Privacy Shield Framework, SnapEngage also automatically withdrew from the U.S.-EU Safe Harbor Framework which was already denounced back in 2015. If your organisation is still set to comply with the U.S.-EU Safe Harbor Framework, you might want to read more about its denouncement by the European Court of Justice and about the EU-US Privacy Shield Framework.
This shield, however, was declared invalid by the European Court of Justice (ECJ). You can find more information here. What does that mean? SnapEngage is still part of the shield, but if you don’t want your data to ever leave the European Union, there are ways around it. Talk to our team about having your account hosted in the servers in the European Union, and take control of your data not leaving the EU. You can do so by controlling Channels, Integrations and services such as call me or SMS to chat.
EU data servers
Even before the denouncement of Safe Harbor, SnapEngage already had separate server infrastructure in the U.S. and the E.U. to better accommodate our clients’ needs in adhering to local privacy and data protection mandates.
A newly created account will, by default, be hosted on our USA servers but if you wish to set up your account (new or existing) to be hosted on our E.U. servers, please start a chat with us or email us at [email protected].
If you wish to read more about our privacy policy, you can do so here.
Published October 13, 2016