Last updated: 10/10/2023
Hubstaff EU-U.S. Data Privacy Framework Policy
Hubstaff complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) as set forth by the U.S. Department of Commerce. Hubstaff has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF. If there is any conflict between the terms in this Policy and the EU-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.
For purposes of enforcing compliance with the EU-U.S. DPF, Hubstaff is subject to the investigatory and enforcement authority of the US Federal Trade Commission.
Personal Data Collection and Use
Data Transfers to Third Parties
Disclosures for National Security or Law Enforcement. Under certain circumstances, Hubstaff may be required to disclose your Personal Data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
Pursuant to the EU-U.S. DPF, EU individuals have the right to obtain our confirmation of whether we maintain Personal Data relating to you in the United States. Upon request, we will provide you with access to the Personal Data that we hold about you. You may also correct, amend, or delete the Personal Data we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under the EU-U.S. DPF, should direct their query to email@example.com. If requested to remove data, we will respond within a reasonable timeframe.
We will provide an individual opt-out choice, or opt-in for sensitive data (including personal information specifying medical or health conditions, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership or information specifying the sex life of the individual), before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your Personal Data, please submit a written request to firstname.lastname@example.org. Hubstaff may limits its response to your exercise of rights as permitted by law.
Questions or Complaints
In compliance with the EU-U.S. DPF, Hubstaff commits to resolve DPF Principles-related complaints about our collection and use of your personal information. EU individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF should first contact email@example.com.
Hubstaff has further committed to refer unresolved privacy complaints under the DPF Principles to an independent dispute resolution mechanism, the BBB Data Privacy Framework Services, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit https://bbbprograms.org/programs/allprograms/dpf-consumers for more information and to file a complaint. This service is provided free of charge to you.
Binding Arbitration. Under certain conditions, you may invoke binding arbitration for complaints regarding EU-U.S. DPF compliance not resolved by any of the other DPF mechanisms. To understand when such terms apply, please see Annex I of the DPF here: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2.