Cronofy maintains a robust compliance program, adhering to the highest security standards, such as ISO 27001, SOC2, HIPAA, and GDPR. We always ensure that your data is securely transferred and stored. A key part of our compliance program is our membership to the EU-US Privacy Shield.
The EU-U.S. Privacy Shield Framework was designed by the U.S. Department of Commerce, and the European Commission, respectively, to provide companies on both sides of the Atlantic with a mechanism to comply with data protection requirements when transferring personal data from the European Union to the United States in support of transatlantic commerce.
On Thursday 16th July 2020, the EU Court of Justice delivered a ruling in which the mechanisms for personal data transfers between the EU and the US were challenged based on the argument that US law cannot adequately ensure the protection of EU personal data. The EU Court Of Justice struck down the Privacy Shield, rendering the US a non-adequate country without any special access to Europe's personal data stream.
Cronofy will continue to maintain the situation, as the US Department of Commerce and the European Commission have initiated discussions to evaluate potentially creating an enhanced EU-US Privacy Shield Framework, which would comply with the 16th July 2020 judgment.
Cronofy being a member of the EU-US Privacy Shield, administered by the ITA (International Trade Administration). Our membership to the EU-US Privacy Shield is a commitment by Cronofy - publicly agreeing to compliance with the Framework’s requirements.
Whilst Cronofy does not transfer data across the Atlantic (data remains local to the data centre it’s created in), customers are safe in the knowledge that Cronofy is bound by the laws outlined within the framework.
Please contact us at email@example.com, with any inquiries or complaints that may relate to our handling of personal data under the EU-US Privacy Shield.
When you use Cronofy, you’re sharing potentially sensitive information with us. It’s our responsibility to make sure that we protect that data, and we take that responsibility very seriously. That’s why information security will always be a first-class concern for us.
Whenever we’re building or developing any aspect of our service, Security is a key consideration. We understand that our customers care deeply about the security of data, and it’s something we feel equally strongly about.
We want our customers to know that they can trust us to process and handle their calendar and event data – always securely and to the highest standards.