data privacy framework Principles
To request a DPA (Data Processing Agreement) please submit a request to email@example.com
Mezmo Inc. commits to cooperate with EU data protection authorities (DPAs) and UK Information Commissioner (ICO) and comply with the advice given by such authorities with regard to human resources data transferred from the EU and UK in the context of the employment relationship.
MEZMO EU-U.S. AND SWISS-U.S. Data Privacy Framework Principles NOTICE
THIRD PARTIES WITH WHOM WE MAY SHARE CUSTOMER DATA
We use a limited number of third party providers to assist us in providing the Services to our customers. As of the date hereof, these third party providers perform technical operations such as database monitoring, data storage and hosting services and customer support software tools. These third parties may access, process or store personal data in the course of providing these services, but based on our instructions only.
If we receive personal data subject to our certification under the Data Privacy Framework Principles and then transfer it to a third-party service provider acting as an agent on our behalf, we have certain liability under the Data Privacy Framework Principles if both (i) the agent processes the personal data in a manner inconsistent with the Data Privacy Framework Principles and (ii) we are responsible for the event giving rise to the damage.
QUESTIONS OR COMPLAINTS:
If you are a resident of a European country participating in the Data Privacy Framework Principles and you believe we maintain your personal data within the scope of this Data Privacy Framework Principles certification, you may direct any questions or complaints concerning our Data Privacy Framework Principles compliance to firstname.lastname@example.org or at our mailing address:
2059 Camden Ave. #297
San Jose, California 95124
We will work with you to resolve your issue.
In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Mezmo Inc. commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF to TRUSTe dispute resolution provider, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://feedback-form.truste.com/watchdog/request for more information or to file a complaint. The services of TRUSTe are provided at no cost to you.
You may also be able to invoke binding arbitration for unresolved complaints but prior to initiating such arbitration, a resident of a European country participating in the Data Privacy Framework Principles must first: (1) contact us and afford us the opportunity to resolve the issue; (2) seek assistance from TRUSTe; and (3) contact the U.S. Department of Commerce (either directly or through a European Data Protection Authority) and afford the Department of Commerce time to attempt to resolve the issue. If such a resident invokes binding arbitration, each party shall be responsible for its own attorney’s fees. Please be advised that, pursuant to the Data Privacy Framework Principles, the arbitrator(s) may only impose individual-specific, non-monetary, equitable relief necessary to remedy any violation of the Data Privacy Framework Principles with respect to the resident.
U.S. FEDERAL TRADE COMMISSION ENFORCEMENT
Our Data Privacy Framework Principles compliance is subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC).
RIGHT OF ACCESS
REQUIREMENT TO DISCLOSE
We may disclose personal data when we have a good faith belief that such action is necessary to: conform to legal requirements or to respond to lawful requests by public authorities, including to meet national security or law enforcement requirements; or to enforce our contractual obligations.
Mezmo is compliant with CCPA, GDPR, HIPAA, SOC 2, PCI-DSS and US/EU Data Privacy Framework Principles