EU-U.S. Effective as of March 05, 2020
Swiss-U.S. Effective as of March 05, 2020
Privacy Shield Notice
Skuid, Inc. (Skuid) participates in the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks regarding the collection, use, and retention of non-human resources personal data from European Union member countries and Switzerland that may be processed using Skuid products and services. We have certified with the Department of Commerce that we adhere to the Privacy Shield Principles described at www.privacyshield.gov. The details of Skuid’s Privacy Shield certification can be viewed here.
Data Processing for Non-Human Resources Personal Data
Skuid is considered a Data Processor for non-human resources personal data related to providing products and services that our customers use to process their data in order to operate their business. Skuid customers decide what information they provide when using Skuid products and services. A wide variety of applications can be built using Skuid products and services such as customer relationship management, customer service, data analytics, human capital management and enterprise resource planning. Examples of information processed include customer, lead, prospect, employee, financial, contact, billing, planning and resource information.
In the operation of Skuid products and services, Skuid may share non-human resources personal data we process with the certain types of third parties for the purposes stated below:
- Subsidiaries, affiliates, contractors and partners who process non-human resources personal data on behalf of Skuid to provide the services requested.
- Third party service providers contracted to provide services on Skuid’s behalf.
Under the Privacy Shield, Individuals from EU member countries and Switzerland are entitled to have access to non-human resources personal data that an organization maintains about them, to limit use and disclosure of their non-human resources personal data and to be able to correct, amend, or delete that data where it is inaccurate, or has been processed in violation of the Principles. Although Skuid personnel have a limited ability to access data that customers submit using our products and services, Skuid will provide assistance in these situations where appropriate by working with the individuals and the customer to provide the necessary access and to correct, amend, or delete information except where the burden or expense of providing access would be disproportionate to the risks to the individual’s privacy or where the rights of persons other than the individual would be violated.
If Skuid transfers non-human resources personal data received under the Privacy Shield to a third party, the third party’s access, use, and disclosure of the non-human resources personal data must also be in compliance with Skuid’s Privacy Shield obligations. Skuid will remain liable under the Privacy Shield for any failure to do so by the third party unless we prove we are not responsible for the event giving rise to the failure.
If you have any inquiries or complaints about Skuid’s handling of your non-human resources personal data under Privacy Shield, or about our privacy practices in general, please contact us at: infosec [at] skuid dot com. We will respond to your inquiry within 45 days.
If we are unable to satisfactorily resolve any complaint relating to the Privacy Shield, or if we fail to acknowledge your complaint in a timely fashion, Skuid participates in the VeraSafe Privacy Shield and Safe Harbor Dispute Resolution Procedure. Subject to the terms of the VeraSafe Privacy Shield and Safe Harbor Dispute Resolution Procedure, VeraSafe will provide appropriate recourse services free of charge to you. To file a complaint with VeraSafe under the Privacy Shield and Safe Harbor Dispute Resolution Procedure, please submit the required information to VeraSafe at: https://www.verasafe.com/privacy-services/dispute-resolution/submit-dispute/
If neither Skuid nor Verasafe resolves your complaint, the Privacy Shield Framework provides the right to invoke binding arbitration to resolve complaints not resolved by other means, as described in Annex I to the Privacy Shield Principles located here.
Skuid is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC). In addition, Skuid may be required to disclose non-human resources personal data that we handle under the Privacy Shield in response to lawful requests by public authorities as needed to meet national security or law enforcement requirements.