Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 7/8/2019
Next Certification Due Date: 7/7/2020
Data Collected: HR, NON-HR

Swiss-U.S. Privacy Shield Framework: Active

Original Certification Date: 7/8/2019
Next Certification Due Date: 7/7/2020
Data Collected: HR, NON-HR

Purpose of Data Collection

Non HR Data: Egress provides services and tools to customers and users to help them protect both structured and unstructured data including: secure email, large file transfer, user and recipient authentication, Secure Workspace, and e-discovery and analytics. To provide them Egress may need to process data that is uploaded, stored or transferred using them by its customers and users (it calls this data, Content). It may also process CRM Information, System Data and, if certain services are subscribed to, Smart Data. You can find out more information on these categories of data in Egress’ privacy policy at www.egress.com/privacy-policy, where Egress also describes the purposes of the processing that it carries out. Egress may use a limited number of third-party subprocessors in providing its services, details of which are set out at www.egress.com/subcontractors. Egress has contracts in place with each of these subprocessors which protect any data that they process on its behalf in line with Egress’ Privacy Shield obligations. HR Data: Egress collects personal data relevant to the relationship that it has with its employees, contractors and temporary staff. Details are set out in its Internal Employee and Contractor Privacy Policy. It uses this information to operate and maintain an effective employer/employee relationship, including: performance management, individual rights, internal policy compliance, business programmes (e.g. partnership, third party events), business activities, and references. Limited third-party subprocessors may be used to provide services relevant to the support of the HR function. Egress has contracts in place with each of these subprocessors which protect any data that they process on its behalf in line with Egress’ Privacy Shield obligations.

Privacy Policy

Non-HR Data

Description:

This is our current Recruitment Privacy Policy and applies to the collection and processing of individuals applying for roles with our group

Effective Date: 7/5/2019
Description:

This is our current Service Privacy Policy and applies to the collection and processing of personal data by customers and users of our software and services

Effective Date: 7/5/2019
Description:

This is our current Visitor Privacy Policy and applies to the collection and processing of personal data when individuals visit our premises

Effective Date: 7/5/2019
Description:

This is our current Event Privacy Policy and applies to the collection and processing of personal data when we meet individuals at events It applies to data that we collect from individuals at events. This will be made available at a new link which will be accessible via www.egress.com/legal when approved.

Effective Date: 7/5/2019
Description:

This is our current Website Privacy Policy and applies to the collection and processing of personal data when individuals visit and use our website, apps and partner portal

Effective Date: 7/5/2019

Verification Method

TRUSTe

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Egress Software Technologies, Inc. at:

Richard Green
Data Protection Officer
Egress Software Technologies, Inc.
The White Collar Factory, 1 Old Street Yard, London, EC1Y 8AF, United Kingdom
268 Summer Street
Boston, Massachusetts 02210

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Egress Software Technologies, Inc. to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against Egress Software Technologies, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission