GDPR COMPLIANCE STATEMENT
The General Data Protection Regulation (GDPR) applies to all companies operating within the European Union (”E.U.”). The E.U. asserts, that the U.S. and international companies with a E.U. customer base must also comply. The GDPR mandate became E.U. law on May 28, 2018. Although Switch views its services as entirely outside the scope of GDPR, Switch offers the following certifications regarding GDPR, for ease of reference.
Physical and Environmental Security – As a trusted service provider of the world’s only Tier 5 Platinum or Tier “Elite” data center facilities, we are fully focused on delivering mission critical worthy physical and the environmental security for our data centers. Third-party audited compliance reports regarding our compliance with these services can be available upon request.
No Processing of Customer Personal Data – Switch does not transmit, receive, store, process, control, sub-process, manage, manipulate, or otherwise access or utilize data on behalf of or resident on its customer’s equipment, servers, or computers. For more information please see Switch’s current Acceptable Use Policy (the “AUP”) available at www.switch.com/aup. Accordingly, Switch’s services do not fall within the scope of the GDPR obligations. Moreover, Switch is not able to monitor the processing of customer personal data.
Physical Security and Data Protection – For security purposes, Switch’s security protocols are closely held and discussion of or audit of the Switch’s security protocols can occur on-site.
GDPR Implementation – As we have already implemented a consistent level of data protection and security at our data centers, we have been fully GDPR compliant since before May 25, 2018, and have all required policies, processes and procedures in place.
Contact Person – Any Switch GDPR related questions and any data subject requests can be addressed to Switch’s Security Team at firstname.lastname@example.org.