GDPR Compliance & OwnBackup
As a global SaaS backup company with customer that rely on the OwnBackup service in almost every country in the world, protecting the backups and personal data of our customers has always been our priority. Supporting our clients in complying with the General Data Protection Regulation (GDPR) demonstrates our ongoing commitment to security and privacy. As a Data Processor under GDPR, we recognize our responsibilities within the Saas Backup space. The OwnBackup service has always focused on privacy, security, and data protection - and this is perfectly aligned with the goals of GDPR.
While GDPR does not introduce significant, new requirements to OwnBackup’s privacy and security practices, we’ve been hard at work to ensure not only full compliance, but also to provide tools to help our customers meet their Data Controller-related compliance objectives for their SaaS backups.
OwnBackup offers a GDPR-compliant Data Processing Addendum (DPA) that incorporates the EU Standard Contractual Clauses, also known as the EU Model Clauses, and OwnBackup’s data security and privacy measures. The OwnBackup DPA ensures that any transfer of SaaS backups containing personal data outside of the European Union in connection with your OwnBackup service will be performed in compliance with the GDPR.
Along with a secure and highly scalable architecture, OwnBackup maintains rigorous technical and organizational security practices and measures in both protecting data backups and the data contained within. We continually monitor the data privacy and security landscape and evaluate industry best practices to not only meet but exceed applicable standards and regulations. To learn more about approach to data security, see our data security controls white paper.
We encourage you to reach out to us at firstname.lastname@example.org if you have any feature requests. If you have specific questions about OwnBackup and GDPR, please feel free to email email@example.com.