The United Kingdom has now left the European Union. Over the past year, Exclaimer has been busy preparing for this eventuality, to primarily ensure that all existing data protection laws continue to be adhered to.
Exclaimer would like to reassure our customers that this event does not affect our ability to deliver our service, operate our solutions or affect our ability to comply with country specific data protection laws, such as the GDPR in any way. Our very rigorous ISO/IEC 27001 Certification backs up our stringent and focused view on Data Security.
If you are one of our customers based in the EU, our email signature services are already provided via two data centres within the EU and so there will be no international transfer at this point. However, there may be situations where your employees need to email Exclaimer in the UK or elsewhere in connection with the services (such as raising a support ticket) – these emails may contain personal data such as the employee’s name, telephone number, job title etc.
The GDPR permits transfers of personal data outside of the European Economic Area only if the country to which the personal data is transferred to has an adequacy decision made in respect of it or if appropriate safeguards are in place.
If the EU decides post transition (ie from 1 January 2021) that the UK has “adequate” safeguards in place from a GDPR perspective, then transfers of personal data from EU customers to Exclaimer in the UK will still be covered by GDPR and have all the safeguards in place that were there prior to Brexit. The UK has already enacted all GDPR laws into its laws so any transfers from the UK to the EU are also protected in the same way.
Pending the EU decision on “adequacy” for the UK and to cover transfers to other countries, Exclaimer has also put in place two protections for any personal data transferred by EU customers to Exclaimer:
- Our End User License Agreement has been updated to include the standard model contract clauses into our agreement with EU customers (pursuant to Article 46 of the GDPR) see www.exclaimer.com/company/legal/eula and
- We have signed an inter-company data transfer agreement between all of the Exclaimer companies which ensures that the standard model contracts clauses (also available at www.exclaimer.com/company/legal/eula) are in place between the Exclaimer companies so that if any of their support personnel are dealing with your support query outside of the EU, then your personal data is fully protected.
If you have any further questions about GDPR compliance, please liaise with your Exclaimer representative or email [email protected]