Important Update on Data Privacy for SteepRock Customers

On October 6, 2015, the European Court of Justice ruled that the 15-year-old EU-US Safe Harbor Framework no longer provides a legal basis for companies to transmit personal data from Europe to the United States. SteepRock is taking steps to ensure that you can continue sharing data from Europe.

The European Court’s Decision

The EU-US Safe Harbor Framework was established in 2000 to facilitate transfers of personal data from the EU to eligible U.S. companies. SteepRock has maintained certification under the Safe Harbor Framework for many years. With the European Court’s decision, a new arrangement is needed to ensure the transfer of personal data from Europe to SteepRock complies with European law.

SteepRock’s Response

SteepRock will execute a contract addendum with any customer who requires one, which incorporates the European Commission’s standard contractual clauses, also known as the “model clauses.” The model clauses were developed by the European Commission as a means for European data “controllers” to legally share personal data with service providers outside Europe.

For more information…

Please contact SteepRock at