Canadian privacy laws—such as the Privacy Act and Personal Information Protection and Electronic Documents Act (PIPEDA) — aim to protect the privacy of individuals, and give them the right to access information gathered about them. The laws require organizations to take reasonable steps to safeguard information in their custody or control, and cover personal information that is held and processed by governments and private organizations in data files, registers, and elsewhere.
Ultimately, the responsibility and ownership of personal data lies with our business customers, per the OpenMoves Terms and Conditions. However, OpenMoves commits that third-party services have implemented security safeguards to help them protect the privacy of individuals, based on established industry standards. We have assessed our practices in risk, security, and incident management; access control; data integrity protection; and other areas relative to the recommendations from the Office of the Privacy Commissioner of Canada, and have determined that the in-scope services are capable of meeting those recommendations.
Australian Privacy Principles
For customers who are concerned about compliance with Australia's Privacy Principles, OpenMoves complies with a wide range of international, industry and local standards, best common practice, regulations, legislation and policy. Many of these are ...
EU-U.S. Privacy Shield
OpenMoves complies with the EU-U.S. Privacy Shield Framework and the Swiss – U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the ...
Model Contract Clauses
European Union (EU) data protection law regulates the transfer of personal data from EU customers to countries outside the EU. OpenMoves has in place EU Standard Contractual Clauses that provide specific guarantees around transfers of personal data ...
General Data Protection Regulation (GDPR)
To safeguard the confidentiality, integrity and availability of data, the OpenMoves platform is hosted on Microsoft Azure. In the US we utilize the East US 2 region, with data backed up to the Central US region. European data is held in the West ...
OPENMOVES GDPR PROGRAM
FAQs about what OpenMoves is doing as data processor to help our customers comply with GDPR This document is downloadable as a PDF here. General Is OpenMoves GDPR compliant? Like you and many other businesses, we have an ongoing GDPR program and we ...