Hive and GDPR
Generally, the GDPR gives individuals in the EU more control over their personal data. Companies that are subject to the GDPR are required to implement appropriate measures to safeguard that data. Examples of measures that Hive takes to comply with these requirements include:
- Investing in our security infrastructure
- Ensuring that we have the appropriate contractual terms in place
- Maintaining proper certifications to support international data transfers
- Creating new features to facilitate data portability and data management
We will continue to update you as we make these changes, and monitor guidance around GDPR compliance.
Data Processing Agreements
Hive offers EU customers who are data controllers the option to enter into a Data Processing Agreement (“DPA”) with Hive. If you would like to request a DPA, please email us at firstname.lastname@example.org.
Our Security Infrastructure
Maintaining the security of our platform is a top priority. All Hive hosting is ISO 27001 accredited. We have developed a security assurance program using global privacy and data protection best practices in order to help customers establish, operate and leverage our security control environment. Learn more about our security procedures here.
Under GDPR, companies are required to transfer personal data from the EU to other countries (including the US) using a valid legal mechanism. Hive self-certifies under the E.U.-U.S. Privacy Shield in compliance with these requirements. This framework requires Hive to maintain certain protections for personal data transferred to the United States.
Data Portability and Management
Hive will continue to invest in our privacy and security procedures to ensure that our customers are protected. If you have any questions, feel free to email us at email@example.com.