U.S.-SWISS SAFE HARBOR LIST
  • The organizations on this list have notified the Department of Commerce that they adhere to the U.S.-Swiss Safe Harbor Framework developed by the Department of Commerce in coordination with the Federal Data Protection and Information Commissioner of Switzerland. The U.S.-Swiss Safe Harbor Framework provides guidance for U.S. organizations on how to provide adequate protection for personal data from Switzerland as required by the Swiss Federal Act on Data Protection.
  • An organization's self-certification of compliance with the U.S.-Swiss Safe Harbor Framework, and the appearance of the organization on this list pursuant to the self-certification, constitute an enforceable representation to the Department of Commerce and the public that it adheres to a privacy policy that complies with the U.S.-Swiss Safe Harbor Framework.
  • There are benefits to organizations that participate in the U.S.-Swiss Safe Harbor program, but participation in the U.S.-Swiss Safe Harbor Framework and self-certification to the list are voluntary. Once an entity elects to participate in the program, it is legally required to comply with the Safe Harbor Privacy Principles. An organization's absence from the list does not mean that it does not provide effective protection for personal data or that it does not qualify for the benefits of the U.S.-Swiss Safe Harbor program. In order to keep this list current, a notification will be effective for a period of twelve months; therefore, organizations must notify the Department of Commerce every twelve months to reaffirm their continued adherence to the U.S.-Swiss Safe Harbor Framework.
  • Organizations should notify the Department of Commerce if their representation to the Department is no longer valid. Failure by an organization to so notify the Department could constitute a misrepresentation.
  • An organization may withdraw from the list at any time by notifying the Department of Commerce. Withdrawal from the list terminates the organization's representation of adherence to the U.S.-Swiss Safe Harbor Framework, but this does not relieve the organization of its Safe Harbor obligations with respect to personal information received during the time that the organization was on the U.S.-Swiss Safe Harbor List.
  • If a relevant self-regulatory or government enforcement body finds that an organization has engaged in a persistent failure to comply with the U.S.-Swiss Safe Harbor Privacy Principles, then that organization is no longer entitled to the benefits of the U.S.-Swiss Safe Harbor program. In this case, the organization must promptly notify the Department of Commerce of such facts either by email or letter. Failure to do so may be actionable under the False Statements Act (18 U.S.C. 1001). That organization must also provide the Department of Commerce with a copy of the decision letter from the relevant self-regulatory or government enforcement body.
  • In maintaining the list, the Department of Commerce does not assess and makes no representations to the adequacy of any organization's privacy policy or its adherence to that policy. Furthermore, the Department of Commerce does not guarantee the accuracy of the list and assumes no liability for the erroneous inclusion, misidentification, omission, or deletion of any organization, or any other action related to the maintenance of the list.
Search by Organization Details         Show Details(...)
Organization Name:
Search Tip: Enter either (a) the exact Organization Name (e.g. The XYZ Corporation); or (b) the % symbol immediately before (i.e. no space) a word of consequence from the Organization Name (e.g. %XYZ)
Keyword:
Search Tip: Enter the Organization Contact name, Corporate Officer name or Zip Code
Phrase:
Search Tip: Enter a phrase or phrases enclosing each within quotation marks. Three types of phrase-based searches are possible: (1) a search for results containing a single phrase (e.g. “data protection authorities”); (2) a search for results containing all of the specified phrases (e.g. “data protection authorities” AND “DPAs”); and (3) a search for results containing any of the specified phrases (e.g. “data protection authorities” OR “DPAs”). This function is especially useful when searching for records that reference a particular Independent Recourse Mechanism or Verification Method.
Industry Sector:
State:

Search by Organization Certification Status         Show Details(...)
Certification Status:
Notice: An organization may be designated as “Not Current” for a variety of reasons. The most common reason is that the organization has failed to reaffirm its adherence to the Safe Harbor Privacy Principles on an annual basis as required by the Safe Harbor Frameworks. Another possible reason is that the organization has failed to comply with one or more of the Safe Harbor Privacy Principles. Organizations designated as “Not Current” are no longer assured of the benefits of the Safe Harbor (i.e., the presumption of “adequacy”). These organizations nevertheless must continue to apply the Safe Harbor Privacy Principles to the personal data received during the period in which they were assured of the benefits of the Safe Harbor for as long as they store, use or disclose those data. Any misrepresentation by an organization designated as “Not Current” concerning its adherence to the Safe Harbor Privacy Principles may be actionable by the Federal Trade Commission or other relevant government body.

Search Alphabetically for Organization Name         Show Details(...)

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z ALL


2906 Results
OrganizationCertification StatusPersonal Data
1010data Global Telecom Solutions LLCCurrentAll personal information subject to the U.S.-EU Safe Harbor Privacy Principles.
1WorldSync, Inc.CurrentPersonal information received about individual contacts of former, current and prospective customers.
2020 ResearchCurrentMarket research data primarily dealing with consumer research.
247 customer, Inc.CurrentData collected through [24]7 predictive experience platform includes information collected through our services offered to our clients as a Software as a solution provider. The data collected can include Online, offline, chat data etc.
2Checkout.com, Inc.CurrentOn-line, off-line, and manually processed
3 Story SoftwareCurrentOff-line, on-line, manually processed data, human resources data.
3D Systems CorporationCurrentHuman Resources Data
3d Travel MetricsCurrentoff-line, on-line, manually processed data
3dna Corporation, Inc. dba NationBuilderCurrentConsumer data, digitally processed.
3G SELLING LLCCurrentClient/Customer contact information such as name, email address, mailing address, phone number. Information about their business such as company name, company size, business type. May be online or data received offline.
41st ParameterCurrentOnline
6Sense InsightsCurrentInformation received from customers, prospective customers and suppliers.
7th Sense Limited PartnershipCurrentOrganization, client and consumer. Consumer data includes phone numbers, email addresses and addresses. The data covered does not include manually processed data.
81qdCurrentAll personal information received
89degrees, Inc.Currenton-line and off-line customer transaction data
A FontLife Publication, LLCCurrentA FontLife Publication, LLC processes personally identifiable information, such as name, address, phone number, email address. Data is collected both manually and electronically.
A. Schulman, IncCurrentPersonal information regarding employees and related to the employment relationship, which includes manually processed data.
A.C. Coy CompanyCurrentA.C. Coy, as an organization, does not receive any Personal Information from the EU. A.C. Coy does have two employees who are currently working as consultants for a client. In the performance of their duties as Information Technology Systems Analysts, they may required to view personal Human Resources data of client employees in order to verify or debug the systems. No data is manually processed.
A.R.O., Inc.CurrentOn-line data = data collected directly on the Internet
A2 Hosting, Inc.Currentoff-line, on-line
Aasonn, LLCCurrentHuman Resources, Employee, and Company Data for the purposes of Software configuration and implementation
ABB IncCurrentOrganization, human resource, customer, prospect, partner, supplier, vendor data; on-line and off-line data.
Abbott Laboratories, together with all of its affiliate and subsidiary companiesCurrentHuman resources, clinical research, pharmacovigilance.
AbbVie Inc.CurrentHuman Resources, Customer and Supplier, Clinical Research and Pharmacovigilance (manual & electronic processing)
ABLE Office ServicesCurrentGeneral office, executive, and clerical support, administrative consulting services, confidential and general correspondence, information processing, transcription services, spreadsheets, powerpoint layouts, copy editing and proofreading.
AbsolutData Technologies, Inc.CurrentData processed by AbsolutData which will fall under the SafeHarbor purview will include customer name, customer demographics like place of stay, gender, age, marital status etc. This includes data which may be conducted using telephonic or face to face interviews which may be required from a market research perspective
AC Forensics, Inc.Not CurrentClient and customer data
Academic Analytics, LLCCurrentOn-Line, Off-Line, Manually Processed
Academic Network, a Stericycle CompanyCurrentOff-line, online, manually processed
Accelero Health Partners, LLCCurrentHuman resource, clinical research participant, patient, customer and supplier personal data in all formats, including electronic and off-line.
12345678910...