Other Covered Entities

Auth0, Inc.

Industries

  • Information and Communications Technology
  • Cybersecurity

Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 10/3/2016
Next Certification Due Date: 12/11/2019
Data Collected: NON-HR

Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 10/31/2017
Next Certification Due Date: 12/11/2019
Data Collected: NON-HR

Purpose of Data Collection

Auth0 is an authentication service (Data Processor) that may be used by Data Controllers to authenticate users. The Data Controllers (Auth0 Customers) collect information from their end users and may store some or all of the user profile information they collect about users in Auth0. The user profile information stored by Auth0 can contain name, email, address, phone number, IP address, password (hashed) and also group/role information used for access control purposes or any other information Auth0 customers wish to put in the user profile. The Auth0 service is a platform that utilizes hosting providers. Selected personal data may further be disclosed by customers during the support process (included in a ticket) and such data would be contained in hosted ticketing and issue reporting systems, troubleshooting systems and possibly discussed within Auth0 via internal communications systems.

Privacy Policy

HR Data

Auth0 Employee Privacy Policy
Description:

Policy and notice governing HR data from UK employees

Effective Date: 8/8/2016

Non-HR Data

Description:

Auth0 Privacy Policy

Effective Date: 8/1/2017

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Auth0 Inc. at:

Adam Nunn
Senior Director, Compliance
Auth0 Inc.
10900 NE 8th Street Suite 700
Bellevue, Washington 98004

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Auth0 Inc. to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against Auth0 Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission