Our Commitment to You and the Protection of Your Data
We’re committed to helping Electric customers and users understand, and where applicable, comply with the General Data Protection Regulation (GDPR). The GDPR is the most comprehensive EU data privacy law in decades, and went into effect on May 25, 2018.
Besides strengthening and standardizing user data privacy across the EU nations, GDPR introduces new or additional obligations on all organizations that handle EU citizens’ personal data, regardless of where the organizations are located.
The GDPR’s updated requirements are significant and our global team has adapted Electric’s product offerings, operations and contractual commitments to help customers comply with the regulation. Measures we have implemented include:
- Investments in our security infrastructure and certifications
- Updates to relevant contractual terms
- Support for international data transfers and by executing Standard Contractual Clauses
- Offering data portability and data management tools including:
- Import and Export. Businesses and organizations may access, import, and export their Customer Data using Electric’s tools through our Turbine platform and through our database.
- Profile Deletion. Help customers respond to user requests to delete personal information, such as names and email addresses, from an Electric account.
We also monitor the guidance around GDPR compliance from privacy-related regulatory bodies, and update our product features and contractual commitments accordingly. We’ll provide you with regular updates so that you’re always current.
Our Security Infrastructure and Certifications
Protecting our customers’ information and their users’ privacy is extremely important to us. As a cloud-based company entrusted with some of our customers’ most valuable data, we’ve set high standards for security. We’ve maintain ongoing readiness frameworks for common certifications such as SOC 2 and ISO. Our internal policies have been designed for protecting personal data in the cloud.
Electric has invested heavily in building a robust security posture, one that can handle a variety of issues — everything from threat detection to building new tools. In accordance with GDPR requirements around security incident notifications, Electric will continue to meet its obligations and when appropriate, offer contractual assurances.
If you’d like to learn more about Electric’s security policies and procedures, please see review our privacy policies, MSA terms and security questionnaire (if applicable). Additional materials can be provided to your security team that provide detailed information on how we approach security, and include architecture diagrams outlining how Electric ensures user data security in particular.
Fulfilling our privacy and data security commitments is important to us. So we’re glad to comply and help you comply with the GDPR. If you have any questions about your rights under the GDPR as a User or how Electric can help you with compliance as a Customer, we hope you’ll reach out to us at privacy@Electric.ai