The new General Data Protection Regulation (GDPR) is fundamentally about protecting and enabling the privacy rights of European Union (EU) citizens and residents. The GDPR establishes global privacy requirements governing how you manage and protect personal data while respecting individual choice—regardless of where data is sent, processed, or stored.
At Ascendo.ai, we believe that the GDPR is an important step towards strengthening data protection laws across the European Union and enabling individual privacy rights. This is why Ascendo.ai is committed to being GDPR compliant across our cloud services. Ascendo.ai takes a principled approach to privacy, security, and compliance, with strong commitments to ensuring you can trust the cloud services you rely on.
Trust – Built Upon a Safe, Secure, and Compliant Cloud. As you prepare to comply with the GDPR, here is what else you can expect from Ascendo.ai:
You maintain control. When you entrust your data to the Ascendo.ai cloud, you remain the sole owner: you retain the rights, title, and interest in the data you store in our cloud services. You can take advantage of the features inherent in our product to meet your GDPR obligations related to deletion, rectification, transfer of, access to, and objection to processing of personal data.
You have full visibility. The Ascendo.ai cloud service protects your data from inappropriate access or use by unauthorized individuals with robust measures, including restricting access by Ascendo.ai personnel and subcontractors. In addition to these commitments, Ascendo.ai provides you with the ability to monitor how data is managed and who has access to what data within your organization. Our service runs on world-class Cloud provider data centers and are certified to internationally recognized security standards, protected by 24 hour physical surveillance, and continuously monitored using strict access controls. Our architecture keeps your data logically isolated from the data of other customers. In addition to running on secured cloud infrastructure, we have a comprehensive security strategy. Each cloud service has builtin security features to help you secure your data, including data at rest encryption, encryption in transit, comprehensive role based access control, and access monitoring.
We commit to rapid response. Ascendo.ai has robust security incident response processes and commits to notifying our customers in accordance with the GDPR. Our security team does not have to wait for an incident to occur. We anticipate issues, and then prioritize and resolve them based on the impact to your data or services.
Partnering to Comply with the GDPR.
Compliance is a shared responsibility and we are committed to partnering with you to help you successfully comply with the GDPR. Requirements such as greater data access and erasure rules, privacy by design, and data breach notification processes may mean changes for your organization. Therefore, it is important to understand your obligations related to the GDPR regardless of where your organization resides.