Privacy - U.S. - EU Safe Harbor

U.S. - EU Safe Harbor

Effective Date: June 24, 2014

Equifax Inc. (Equifax) certified that it complies with the U.S. - EU Safe Harbor Framework, as set forth by the U. S. Department of Commerce, when the following Equifax affiliates provide services and support:

  1. Equifax Iberica, S.L. (Equifax Iberica) - Equifax Iberica, S.L. transfers client data for processing to Equifax Technology Solutions LLC (ETS) when ETS provides support for Equifax Iberica business clients who purchase Equifax software solutions.  Equifax Iberica also transfers data to Equifax Information Services LLC (EIS), which provides data quality assurance services and analytic services for Equifax Iberica.

  2. EIS and Compliance Data Center, LLC (CDC) – EIS and CDC perform services for its clients which provide CDC and EIS with personal information obtained from data subjects located in European Union member countries.

To learn more about the Safe Harbor program and to view Equifax's Safe Harbor certification, please visit http://export.gov/safeharbor/.

Safe Harbor Principles

 

Notice: ETS, EIS, and CDC do not collect personal information directly from European data subjects. Contractual provisions between Equifax Iberica and its clients and data sources require them to provide appropriate notice to data subjects that data may be transferred to the U.S. for processing under the U.S.-EU Safe Harbor framework.

Choice: ETS, EIS, and CDC do not collect personal information directly from European data subjects. Contractual provisions between Equifax Iberica and its clients and data sources require them to provide appropriate choice in connection with data transferred to the U.S. for processing under the U.S. - EU Safe Harbor framework. 

Onward Transfer: ETS will not transfer to third parties any data covered under the U.S. - EU Safe Harbor Program.  EIS may transfer data covered under the U.S. - EU Safe Harbor Program to Equifax analysts located in Argentina.  When EIS and CDC transfer any data covered under the U.S. – EU Safe Harbor Program to a third party that is acting as an agent performing tasks on behalf of, and under the instructions of, EIS and CDC, it shall enter into a written agreement with such third party requiring that the third party provide at least the same level of privacy protection as is required by the relevant Safe Harbor Principles.

Security: ETS, EIS, and CDC have in place procedural and technical safeguards for the protection of personal information.

Data Integrity: ETS, EIS, and CDC take reasonable steps to ensure that the data in their possession is accurate, complete, current, and reliable for its intended use.

Access: Contractual provisions between Equifax Iberica and its clients and data sources require them to honor appropriate access requests in connection with data transferred to the U.S. for processing under the U.S.-EU Safe Harbor framework. With regard to ETS, EIS, and CDC, these entities do not collect personal information directly from European data subjects and do not retain such information any longer than required to perform services on behalf of their clients. 

Enforcement: We have selected JAMS International as our dispute resolution provider. Individuals who believe that Equifax is not complying with the terms of the U.S. - EU Safe Harbor Program or this policy, can e-mail Equifax at privacy@Equifax.com or write to Chief Privacy Officer, Equifax Inc., 1550 Peachtree Street, NW, Atlanta, GA 30309.

Individuals who do not believe that their concerns have been adequately addressed by the company can obtain further information about international dispute resolution and case filing instructions at http://www.jamsinternational.com/.

Changes To This Policy

This privacy policy may be amended from time to time consistent with the requirements of the Safe Harbor Principles. If this privacy policy is revised, we will post the revised policy and its effective date on this website.