You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/security/security-privacy/data-privacy/data-privacy-new-relic.mdx
+7-3Lines changed: 7 additions & 3 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -23,11 +23,13 @@ You are responsible for ensuring that your systems are appropriately set up and
23
23
New Relic includes the option of HIPAA-enabled accounts for customers meeting certain requirements. To learn more, see [HIPAA readiness at New Relic](/docs/security/security-privacy/compliance/hipaa-readiness-new-relic).
24
24
</Callout>
25
25
26
-
## Personal data transfer (Privacy Shield and SCC) [#privacy-shield]
26
+
## Personal data transfer (Data Privacy Framework and SCC) [#data-privacy-framework]
27
27
28
-
The [Schrems case ruling invalidates Privacy Shield](https://epic.org/privacy/intl/schrems/). However, it explicitly reaffirms the validity of Standard Contractual Clauses (SCC) as an appropriate legal mechanism to transfer personal data outside of the European Union. You can find more information in [How the Demise of Privacy Shield Affects Your New Relic Account](https://newrelic.com/resources/articles/how-demise-of-privacy-shield-affects-you).
28
+
As of October 2023, the U.S. Department of Commerce has formally approved New Relic's certification under the EU-U.S. Data Privacy Framework, the Swiss-U.S. Data Privacy Framework, and the UK extension to the Data Privacy Framework.
29
29
30
-
If you want to send personal data from the EU, we offer an appropriate data processing agreement (DPA) with SCC to govern the transfer of that data in accordance with the Schrems decision. For more information, consult our [Data Processing Addendum FAQ](https://newrelic.com/termsandconditions/dataprotectionFAQ), or download our [pre-signed DPA](https://newrelic.com/termsandconditions/dataprotection).
30
+
The Data Privacy Framework replaces the Privacy Shield for data transfers to the U.S. The Privacy Shield was invalidated in the [Schrems case](https://epic.org/privacy/intl/schrems/). The Schrems case reaffirmed the validity of Standard Contractual Clauses (SCC) as an appropriate legal mechanism to transfer personal data outside of the European Union. Since then, New Relic has relied on the Standard Contractual Clauses as a mechanism to transfer personal data from the EU, Switzerland and the UK (the SCC were updated in 2021). You can find more information in [EU-U.S. Data Privacy Framework (DPF) & International Data Transfers](https://newrelic.com/blog/how-to-relic/eu-us-dpf-international-transfers).
31
+
32
+
If you want to send personal data from the EU, Switzerland, and/or the UK, we offer an appropriate data processing addendum (DPA) that makes reference to the Data Privacy Framework and/or the SCC, as applicable. In the event that the Data Privacy Framework is invalidated, the SCC will automatically apply in order to ensure that there is a valid data transfer mechanism in place to govern the transfer of that data. For more information, consult our [Data Processing Addendum FAQ](https://newrelic.com/termsandconditions/dataprotectionFAQ), or download our [pre-signed DPA](https://newrelic.com/termsandconditions/dataprotection).
31
33
32
34
## Compliance with legal requirements [#legal]
33
35
@@ -43,6 +45,8 @@ For privacy-related details about New Relic's contractual and regulatory commitm
43
45
44
46
For more information about annual audits, see [Regulatory audits for New Relic services](/docs/security/new-relic-security/compliance/regulatory-audits-new-relic-services).
45
47
48
+
If you have further questions, please contact your account team, or [email protected]. Please note that we are unable to provide assistance to our customers with privacy questions via any third party platforms, including, e.g., any data privacy or data privacy compliance platforms. The only method by which we can provide assistance is as set out above.
49
+
46
50
## Privacy by design and by default [#default]
47
51
48
52
New Relic follows "privacy by design" principles as part of our overarching security program. For example, when New Relic agents capture a webpage or referrer URL, all query parameters are stripped by default.
0 commit comments