Other Covered Entities

WPVIP Inc.

Industries

  • Information and Communications Technology

Participation

UK Extension to the EU-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 10/4/2023
Next Certification Due Date: 3/14/2024
Data Collected: NON-HR

EU-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 5/12/2017
Next Certification Due Date: 3/14/2024
Data Collected: NON-HR

Swiss-U.S. Data Privacy Framework Framework: Active

Original Certification Date: 5/12/2017
Next Certification Due Date: 3/14/2024
Data Collected: NON-HR

Purpose of Data Collection

Automattic and WPVIP provide enterprise customers (“Clients”) with website hosting, support and professional services and a content analytics service known as Parse.ly. We process personal data for some Clients when providing those services. Clients using our website hosting services may provide personal data in the form of information about visitors to the Client’s public-facing websites or intranet sites hosted on the WordPress VIP service (“Client Sites”). Such data may include information relating to end-user accounts (if any) on a Client Site (such as username and email address) and any content containing personal information on a Client Site. Parse.ly is an analytics service that Clients use on their websites and applications to track user engagement with the content on those sites and applications. In the course of providing the Parse.ly service, we process personal data regarding such users including, but not limited to, names, addresses, email addresses, ip addresses, unique user IDs and browsing history. We treat each Client as a data controller for the data described above and we process such data on behalf of our Clients as a data processor. We disclose such data only to our third-party service providers who help provide the WordPress VIP services to Clients and where disclosure is legally compelled.

Privacy Policy

Non-HR Data

Description:

Automattic Inc. and its wholly owned subsidiary WPVIP Inc. (together referred to herein as “WordPress VIP”) comply with the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”) with respect to the processing of the WordPress VIP Services Personal Data (as defined below). WordPress VIP has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of WordPress VIP Services Personal Data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF. WordPress VIP has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of WordPress VIP Services Personal Data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this notice and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.

Effective Date: 10/1/2023

Verification Method

Self-Assessment

Dispute Resolution

Questions or Complaints?

If you have a question or complaint regarding the covered data, please contact Automattic Inc. at:

Kevin Hite
Associate General Counsel
Automattic Inc.
Legal Department
60 29th St # 343
San Francisco, California 94110-4929

Privacy Shield organizations must respond within 45 days of receiving a complaint.

If you have not received a timely or satisfactory response from Automattic Inc. to your question or complaint, please contact the independent recourse mechanism listed below


NON-HR RECOURSE MECHANISM



Appropriate statutory body with jurisdiction to investigate any claims against Automattic Inc. regarding possible unfair or deceptive practices and violations of laws or regulations covering privacy Federal Trade Commission