The General Data Protection Regulation (GDPR) applies to all companies operating within the European Union (”E.U.”). The E.U. asserts, that the U.S. and international companies with a E.U. customer base must also comply. The GDPR mandate became E.U. law on May 28, 2018.


The California Consumer Privacy Act (CCPA) applies to all companies that collect or provide personal information of California residents. The CCPA became California law and effective January 1, 2020, enforceable beginning July 1, 2020.

For clarity, Switch does not access, transmit, maintain, manage, process, sub-process, or otherwise access customer data to perform its services. Therefore, although Switch views its services as entirely outside the scope of GDPR and CCPA, Switch offers the following certifications regarding GDPR and CCPA, for ease of reference.


Physical and Environmental Security – As a trusted service provider of the world’s only Tier 5® Platinum® or Tier “Elite” data center facilities, we are fully focused on delivering physical and environmental security for our data centers worthy of supporting mission critical deployments. Third-party audited compliance reports regarding our compliance with these services can be available upon request.

No Processing of Customer Personal Data – Switch does not transmit, receive, store, process, control, sub-process, manage, manipulate, or otherwise access or utilize data: (i) on behalf of our customers; or (ii) resident on its customer’s equipment, servers, or computers. Moreover, Switch is not able to monitor the processing of customer personal data. For more information please see Switch’s current Acceptable Use Policy (the “AUP”) available at

Physical Security and Data Protection – For security purposes, Switch’s security protocols are closely held; however, a discussion or audit of Switch’s security protocols can occur on-site.

GDPR and CCPA Implementation – As we have already implemented a consistent level of physical and environmental security at our data centers, we have been supporting our customers in achieving GDPR and CCPA compliance, and have all required policies, processes and procedures in place.

Contact Person – Any GDPR, CCPA, or data related questions can be addressed to Switch’s Security Audit Reports Team at [email protected].