Overview of Privacy and Data Protection
Buildworks prioritizes customer trust. We know that the security and integrity of customer data is important to our customers’ values and operations. That is why we keep it private and safe.
Buildworks helps customers maintain control of their privacy and data security in a myriad of ways:
Data Security: We provide our customers compliance with high security standards, such as encryption of data in motion over public networks, auditing standards (SOC 2, ISO 27001, ISO 27018), Distributed Denial of Service (“DDoS”) mitigations, and a Support team that is on-call 24/7.
Trust: Buildworks has developed security protections and control processes to help our customers ensure a secure environment for their information. Independent third-party experts have confirmed Buildworks’ adherence to high industry standards.
Data Hosting Locality: Customers who purchase the Data Center Location Deployed Associated Service (“Data Center Location Add-on”) have the ability to select the region (from the available Buildworks regional options) where the data center which hosts their Service Data is located.
Access Management: Buildworks provides an advanced set of access and encryption features to help customers effectively protect their information. We do not access or use customer content for any purpose other than providing, maintaining and improving the Buildworks services and as otherwise required by law.
Since our inception, Buildworks’ approach has been anchored with a strong commitment to privacy, security, compliance and transparency. This approach includes supporting our customers’ compliance with EU data protection requirements, including those set out in the General Data Protection Regulation (“GDPR”), which replaced the EU Data Protection Directive (also known as “Directive 95/46/EC“) and became enforceable on May 25, 2018.
If a company collects, transmits, hosts or analyzes personal data of EU citizens, GDPR requires the company to use third-party data processors who guarantee their ability to implement the technical and organizational requirements of the GDPR. To further earn our customers’ trust, our DPA has been updated to provide our customers with contractual commitments regarding our compliance with applicable EU data protection law and to implement additional contractual provisions required by the GDPR. Our contractual commitments guarantee that customers can:
Respond to requests from data subjects to export, correct, amend or delete personal data.
Be made aware of and report personal data breaches to relevant supervisory authorities and data subjects in accordance with GDPR timeframes.
Demonstrate their compliance with the GDPR as pertaining to Buildworks’ services.