The GDPR is a new comprehensive data protection law (in effect May 25, 2018) in the EU that strengthens the protection of personal data in light of rapid technological developments, increased globalization, and more complex international flows of personal data.This law is an important step forward in streamlining data protection requirements across the EU and it’s an opportunity for VividCortex to showcase our investment in data protection.
We are committed to our customers’ success, including compliance with the GDPR. Similar to existing privacy laws, compliance with the GDPR requires a partnership between VividCortex and our customers in their use of our services.
VividCortex is in compliance with the Principle(s) in the EU-U.S. Privacy Shield Framework. Privacy Shield Principles through self-certification, that commitment is enforceable under U.S. law by the relevant enforcement authority, either the U.S. Federal Trade Commission (FTC) or the U.S. Department of Transportation (DOT).
If you have determined that you qualify as a data controller under the GDPR, and need a data processing addendum (DPA) in place with your qualifying vendors, we want to help make things easy for you.
Our GDPR compliant DPA is available for download and signature here.
If you have contractual and/or governmental data compliance requirements for managing data—such as PCI, ePHI, PII etc.—VividCortex provides a configurable option to filter this data. This option ensures that the data never leaves your server and never enters the VividCortex Cloud environment. More details can be found in our documents section. Learn more at the EU Commission site here.
For inquiries about GDPR such as DPAs, list of Sub Processors, and Security control questions contact privacy@vividcortex.com.