Crossbeam's commitment to data privacy and security is embedded in every part of our business. This page outlines the high-level details for several of the frameworks, regulations, and certifications that apply to our company and its products.
You can also access more comprehensive security and compliance details in the Security section of our documentation or contact firstname.lastname@example.org with specific questions or requests.View Documentation
Crossbeam maintains compliance with AICPA's SOC for Service Organizations Trust Services Criteria, commonly known as SOC 2.
Our SOC 2 report is available to current and prospective enterprise customers upon request, subject to the appropriate non-disclosure agreements.
The European Union's General Data Protection Regulation (GDPR) creates a standard framework to which all compliant businesses must adhere, creating clarity and transparency for customers.
In compliance with GDPR, Crossbeam offers a Data Processing Addendum (DPA) that enacts standard contractual clauses set forth by the European Commission to establish a legal basis for cross-border data transfers from the EU.
Crossbeam is also committed to operating in compliance with California Consumer Privacy Act (CCPA) on or before its January 1, 2020 effective date. Our existing practices related to GDPR provide a strong starting basis for this adherence.
Crossbeam is certified under the EU-US Privacy Shield Framework. The EU-U.S. Privacy Shield Framework provides a method for companies to transfer personal data to the United States from the European Union (EU) in a way that is consistent with EU law. More information on Privacy Shield is available here.
U.S. businesses participating in the Privacy Shield Frameworks must provide an independent dispute resolution service to EU or Swiss individuals whose personal data they transfer to the United States. Crossbeam participates in the BBB EU Privacy Shield program, operated by the Council of Better Business Bureaus, for independent dispute resolution.