GDPR

Updated: 5/23/2018

Passed in 2016, the new General Data Protection Regulation (GDPR) is the most significant legislative change in European data protection laws since the EU Data Protection Directive (Directive 95/46/EC), introduced in 1995. The GDPR, which becomes enforceable on May 25, 2018, seeks to strengthen the security and protection of personal data in the EU and serve as a single piece of legislation for all of the EU. It will replace the EU Data Protection Directive and all the local laws relating to it.

The data regulation law centers on two main principles. The first is that companies need your consent to collect your data. The second is that you should be required to share only data that is necessary to make their services work.

We support the GDPR and will ensure all Yama Industrials, Inc. services comply with its provisions by May 25, 2018. Not only is the GDPR an important step in protecting the fundamental right of privacy for European citizens, it also raises the bar for data protection, security, and compliance in the industry.

If you're visiting us from the EU, we are compliant with the General Data Protection Regulation (GDPR). We provide the same standard of security privacy protection to all our users around the world, regardless of their country of origin or location.

Global privacy practices

We store and process the information that we collect in the United States in accordance with this Privacy Statement (our subprocessors may store and process data outside the United States). However, we understand that we have users from different countries and regions with different privacy expectations, and we try to meet those needs even when the United States does not have the same privacy framework as other countries.

We provide the same standard of privacy protection — as described in this Privacy Statement — to all our users around the world, regardless of their country of origin or location, and provide the same levels of notice, choice, accountability, security, data integrity, access, and recourse.

ZOHO COMPLIANCE

GDPR is a pan-European regulation that requires businesses to protect the personal data and privacy of EU citizens for processing of their personal data.

Zoho has always demonstrated its commitment to its user's data privacy by consistently exceeding industry standards. Zoho welcomes GDPR as a strengthening force of the privacy-consciousness that already exists in it.

Zoho's offerings have privacy features that comply to GDPR, and Zoho's processing of its customer's data adheres to the data protection principles of the GDPR.

Applicable to: Zoho Campaigns,Zoho CRM,Zoho Forms,Zoho Mail,Zoho SalesIQ,

Zoho Cliq,Zoho PageSense,Zoho Social,Zoho Motivator,

Zoho Projects,Zoho Writer,Zoho Desk,Zoho Assist,Zoho Recruit,

Zoho People,Zoho Creator,Zoho Analytics,Zoho Flow,

Zoho Vault,Zoho Finance Plus,Zoho Connect,

Zoho Survey,Zoho Sign

TRUSTe Review Zoho’s privacy policy, platform, website, and support portal have been reviewed by TRUSTe for compliance with their program requirements.

Zoho Corporation is certified to be compliant with the EU-U.S. PRIVACY SHIELD FRAMEWORK and SWISS-U.S. PRIVACY SHIELD FRAMEWORK

Google Cloud Security and Compliance

EU Data Protection Directive

The Article 29 Working Party is an independent European advisory body focused on data protection and privacy. They have provided guidance on how to meet European data privacy requirements when engaging with cloud computing providers. Google provides capabilities and contractual commitments created to meet data protection recommendations provided by the Article 29 Working Party.

EU model contract clauses

In 2010, the European Commission approved model contract clauses as a means of compliance with the requirements of the Directive. The effect of this decision is that by incorporating certain provisions into a contract, personal data can flow from those subject to the Directive to providers outside the EU or the European Economic Area. Google has a broad customer base in Europe. By adopting EU model contract clauses, we’re offering customers an additional option for compliance with the Directive.