Participation

EU-U.S. Privacy Shield Framework: Active

Original Certification Date: 4/12/2017
Next Certification Due Date: 11/21/2020
Data Collected: HR, NON-HR

Purpose of Data Collection

The transfer is made for the following purposes: • In relation to employees and former employees:  human resources administration  employee performance evaluation  retention of employees’ core details  administration of core records, expense reimbursement and background checks arising from the administration of the recruitment process carried out by DataXu • In relation to job applicants:  administration of job applications • In relation to clients and customers/end-users of clients:  provision of advertising campaign services to clients  provision of analytics services and related reports, including metrics, to clients  client administration and core records management  client relationship management and marketing The personal data transferred concern the following categories of data: • In relation to employees and former employees:  copies of resumés or CVs  details of education and qualifications  work experience  name  address  social security number or other government issued identity number (e.g. National Insurance number or passport number)  contact telephone number(s)  e-mail address  age  gender  date of birth  details of compensation by the data exporter entity and, in some cases, former employers  special work environment requirements  references  payroll data  photographic and video imaging • In relation to job applicants:  copies of resumés or CVs  details of education and qualifications  work experience  name  address  contact telephone number(s)  e-mail address  age  date of birth  references  photographic and video imaging • In relation to clients and customers/end-users of clients:  name  address  contact telephone number(s)  e-mail address  device IDs  IP addresses The personal data transferred may be disclosed only to the following recipients or categories of recipients: • In relation to personal data of employees, former employees and and job applicants:  authorised personnel in the human resources and finance departments  authorised personnel involved in the recruitment and interviewing of job applicants  authorised management including, without limitation, members of the Board of Directors  third party providers of various services including, without limitation, referencing and verification services, IT services, client relationship management services, payroll services, accounting and audit services, data analytics services and legal services  third party providers of various employee benefits including, without limitation, health insurance and pension providers • In relation to personal data of clients and customers/end-users of clients:  authorised personnel in the campaign management, engineering, finance, client development, marketing and legal departments  authorised management including, without limitation, members of the data importer’s Board of Directors  third party providers of various services including, without limitation, IT services, client relationship management services, accounting and audit services, data analytics services and legal services

Privacy Policy

HR and Non-HR Data

Description:

Global Privacy Policy covering the DataXu Platform

Effective Date: 11/5/2019

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact DataXu, Inc. at:

Barbara Shih
VP, Legal
DataXu, Inc.
Los Gatos
53 State St
Boston, Massachusetts 02109

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from DataXu, Inc. to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against DataXu, Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission