At Otava, privacy of your information and that of your customers is paramount. We comply with the U.S.-EU Privacy Shield framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. We have certified that we adhere to the Privacy Shield Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/Program-Overview (note that our certification is listed under our old name of Online Tech).
Privacy Shield is an update of the Safe Harbor program framework, which was developed by the U.S. Department of Commerce in 2000 in consultation with the European Commission on Data Protection. In October 2015, this law was struck down and replaced with Privacy Shield. Privacy Shield provides many of the same assurances as Safe Harbor, but further addresses European concerns over excessive government access to data and creates a process to address individual complaints.
As a secure IT provider with services such as cloud, colocation and data protection solutions, Otava is dedicated to following Privacy Shield principles in order to comply with the data privacy laws for all European Union nations. Although businesses in Europe and the U.S. both collect and retain personal information about their customers, including social security and credit card numbers, they do have differences in their regulations and policies regarding personal data. Privacy Shield bridges this gap more comprehensively than Safe Harbor.
Privacy Shield enables U.S.-based organizations to join the Privacy Shield Framework in order to benefit from the adequacy determination it provides. It also gives companies on both sides of the Atlantic a mechanism to comply with EU data protection requirements when transferring personal data from the European Union to the United States in support of transatlantic commerce.
The new Principles are quite similar to the original law, and with streamlined and cost-effective compliance requirements, the program benefits small and medium enterprises. Businesses can even self-certify within the framework provided by the Department of Commerce.