Ask An Expert

Ask An Expert

Safe Harbor Questions

Under Safe Harbor, the processing, storage, and transfer of personal data from the EU to the US were permitted. Safe Harbor required US companies to implement a self-certification process to protect this personal data. This process included providing detailed information on the organization’s privacy policy, sharing the details of what the organization does with this private data, and an agreement to cooperate and comply with EU data protection authorizes.

However, on October 6, 2015, the European Court of Justice (EJC) ruled the EU-US Safe Harbor Framework invalid. This means every company that previously certified under Safe Harbor is now out of compliance with the European data protection law and is vulnerable to fines by the data protection authorities or orders to suspend transfers. This presents a major challenge for the 4,000+ companies that relied on Safe Harbor. To be compliant, they can either build data centers in Europe to keep their EU personal data in Europe, or alternatives to Safe Harbor (e.g. Model Contracts or Binding Corporate Rules) to legally transfer EU personal data to the US.

The EU-US Safe Harbor Framework ruling does not affect Egnyte, because Egnyte’s European subsidiaries comply with the EU Data Protection Directive (EUDPD) to ensure customer privacy and data protection. Egnyte can protect your privacy and personal data in lieu of Safe Harbor because:

  • Egnyte has a data center in Europe
  • Egnyte stores all European customers data in Europe only
  • Egnyte has a customer support center in Europe
  • Egnyte has a development center in Europe
  • Egnyte complies with the EU stringent levels of data privacy and security

Your personal data does not leave the EU even when you place a support ticket, which is handled by Egnyte’s European support team. To learn more about how Egnyte is well positioned to protect your privacy and personal data, contact an Egnyte Product Specialist.