Microsoft and Salesforce have previously gotten certified under the program, which has been in force since July 2016. The intent of the program is to ensure the privacy of users’ data as it moves across the Atlantic, in line with European Union data protection law.
In effect the Privacy Shield is the replacement for the Safe Harbor Agreement, which was ruled invalid by the European Court of Justice last year.
To meet the standards of the Privacy Shield, companies must ensure that their privacy policies assert their commitment to the Privacy Shield, link out to the Privacy Shield website and a site for lodging complaints, and communicate users’ rights to access their data, among other things. Following users’ complaints, companies certified under the program must respond to users in 45 days. The program also has rules about what happens when data is shared with third parties.
Every day we send out a free e-mail with the most important headlines of the last 24 hours.
Subscribe now