Swivle and GDPR compliance

Swivle is a cloud-based Digital Asset Management solution by WoodWing Software BV. Swivle’s General Data Protection Regulation (GDPR) compliance is therefore part of the larger program for Data Protection within the WoodWing group of companies. This group includes WoodWing Software BV, WoodWing Europe, WoodWing USA, and WoodWing Asia Pacific / Digital Services.

What did we do to comply?

WoodWing engaged with a third-party company to review all internal documentation and took compliance steps within the group of companies to meet legal obligations under the GDPR.

Compliance with data protection legislation at the WoodWing group of companies is work in progress: documents, policies and internal processes are gradually updated. Swivle is part of these ongoing efforts.

Updates to the privacy policy

Swivle has an independent privacy policy that is in line with the privacy policy for WoodWing Software BV. The full text of Swivle’s privacy policy can be found in the Privacy and cookies policy.

Third-party services

A list of third-party tools and services relied upon by Swivle can be found in our privacy policy, sections 2.10 and 4.

We have made sure that Swivle has a Data Processing Agreement with every third-party service and tool. We also ensure that Swivle concludes Data Processing Agreements with each customer.

Data protection officer role

WoodWing Software BV formed a group of employees within the organization dedicated and responsible for the implementation of GDPR compliance throughout the group of companies, supervising compliance in relation to all products and solutions, including Swivle. 

Technical and organizational measures

Technical and organizational measures (TOMs) to protect personal data within Swivle have been drafted on the basis of the existing practices within the WoodWing group of companies.

A copy of our TOMs can be requested by contacting our representative via email: team@swivle.com. 

International data transfers

WoodWing has offices in The Netherlands, The United States of America, and Malaysia. 

Transfers to and from The United States of America are protected by the Privacy Shield

Transfers to and from Malaysia are based on Article 49 of the GDPR (limited transfers for compelling legitimate interests).

Hosting infrastructure and storing data

The Swivle website and services are hosted on the Amazon Web Services infrastructure currently situated in Ireland, The United States of America, Singapore, and Australia. 

All data is stored in one of these countries. A new customer will automatically be assigned to the country that achieves the lowest latency for them during the registration process.

WoodWing Software BV may decide in the future to move the stored data to another country in order to optimize hosting facilities and infrastructure or to comply with regulatory requirement. 

Contact 

If you have specific questions or would like to receive additional information regarding GDPR compliance, you can reach out to our Privacy group via email: privacyofficer@woodwing.com

Did this answer your question?