Veeva’s Privacy Shield Certification Facilitates International Data Transfers
Veeva has always prioritized customer and employee success – and data protection is an integral part of those values. Never was that more evident to me than at our European Commercial Summit last year, where data privacy – and in particular the transfer of data between the EU and the U.S. – was a hot topic among Veeva and our customers.
As I am responsible for managing data protection for Veeva globally, I dedicate 100% of my time to data privacy and ensuring our solutions are compliant. My team and I continuously follow developments in the legal landscape.
As you may know, Veeva previously transferred EU data to the U.S. according to the Safe Harbor principles established between the European Commission and the U.S Department of Commerce. But on 6 October 2015, the European Court of Justice invalidated Safe Harbor, so Veeva immediately engaged with customers to sign the EU Standard Contractual Clauses to maintain legal transfers.
As soon as the new Privacy Shield framework was announced, my team and I set to work on achieving certification. We successfully submitted our application before the early adopter deadline of 30 September 2016, which would allow for a nine-month grace period to align vendor agreements.
On 12 December 2016, we received notice approving our Privacy Shield certification, meaning that Veeva adheres to robust and rigorous principles that protect EU personal data when it is transferred to the U.S. – something we do mainly to provide technical and administrative support outside European business hours.
So, what exactly does Privacy Shield mean for Veeva customers and employees?
Quite simply, our Privacy Shield certification offers an extra level of protection and negates the need for individual EU customer contracts, saving time and energy. As a valid legal mechanism, it also requires review and approval by a third-party provider to verify our procedures and manage disputes.
But most importantly, it is about creating a culture of trust at Veeva. Our customers know that their data is protected with us and that we have thorough processes in place. Likewise, our European employees are reassured that we value their privacy as part of a global company. Finally, we choose partners who also value privacy and adhere to the same standards.
Data protection can be a complex issue, and the future is far from certain. But we believe that open communication and building trust through transparency are key. To learn more about Veeva’s approach to privacy, click here. You can also view our Privacy Shield certification on the U.S. Department of Commerce site here. Please feel free to get in touch with any questions by emailing me at ashley.slavik@veeva.com