Other Covered Entities

Buffer, Inc

Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/5/2018
Next Certification Due Date: 7/5/2022
Data Collected: HR, NON-HR

Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 8/5/2018
Next Certification Due Date: 7/5/2022
Data Collected: HR, NON-HR

Purpose of Data Collection

Buffer app is a social media management tool that allows users to engage in social media scheduling, advanced analytics and audience engagement. We obtain personal data from users for the purpose of providing our software service. We will request personal information for the following purposes: Registration. To have access to certain restricted sections of our Site or request to receive marketing materials, you may be required to become a registered user, and to submit the following types of Personal Information to Buffer: name, email address, phone number, full user name, password, city, and time zone. Customer Support. We may collect information through communications with our customer support team or other communications that a user may send us and their contents. Making a Purchase. When a user make payments through the Service, they will need to provide Personal Information such as your credit card number and billing address. Social Media. In order to allow users to post to their social media platforms, we may ask users to provide their username, account ids, social handle, timezones, and email address. Other. We may also collect contact details when a user provide them in the context of our customer, vendor, and partner relationships. A full list of all personally identifiable information collected from our users is outlined in our Privacy Policy. We disclose some personal information to our third-party service providers such as: AWS, Baremetrics, Bugsnag, Cloudflare, Compose, Fivetran, Fullstory, Google, GoSquared, Hotjar, HelpScout, Homerun, Hubspot, Intercom, Looker, MongoDB, Atlas, Mailchimp, Mixpanel, NiceReply, NiceReply, Pusher, Qualaroo, Sendgrid, Smooch, Stripe, Twilio, Wootric. We have Data Processing Agreements in place with each of these third parties.

Privacy Policy

HR Data

Intragroup Agreement - HR Data
Description:

This Agreement governs: (a) processing of Personal Data by a Party acting as processor on behalf of a Party acting as controller, or as sub-processor on behalf of a Party acting as processor to which European Privacy Law applies; As it pertains to HR Data

Effective Date: 1/1/2020
Privacy Policy for Employees
Description:

This privacy policy outlines our commitment to protecting the privacy and security of our teams personal information.

Effective Date: 1/1/2020

Non-HR Data

Description:

Our Privacy Policy was last reviewed and revised, alongside our legal team, in July 2019.

Effective Date: 7/29/2019
Description:

An explanation of our compliance with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework.

Effective Date: 7/29/2019

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Buffer, Inc at:

Jenny Terry
Director of Business Operations
Buffer, Inc
2443 Fillmore St #380-7163
San Francisco, California 94115

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Buffer, Inc to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against Buffer, Inc regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission