Commitment with EU-U.S. & Swiss-U.S. Privacy Shield Frameworks and other International privacy regulations

Privacy Shield Framework

CipherTechs, Inc. (CipherTechs) complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework(s) (Privacy Shield) as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and the United Kingdom and/or Switzerland, as applicable to the United States in reliance on Privacy Shield. CipherTechs has certified to the Department of Commerce that it adheres to the Privacy Shield Principles with respect to such information. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit

Independent Recourse Mechanism for Privacy Shield Complaints:

In compliance with the Privacy Shield Principles, CipherTechs, Inc. commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact CipherTechs, Inc. at:

CipherTechs, Inc. has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU in the context of the employment relationship.

CipherTechs Disclosures:

CipherTechs does not collect personal customer or consumer information. CipherTechs has controls in place to ensure business information is protected with controls and performs regular reviews and security testing of the CipherTechs global network environment. Any information collected is used for Human Capital or business processing to protect CipherTechs and customer business information. At a minimum, CipherTechs performs an annual risk assessment and assessments against General Data Protection Regulation (GDPR), Personal Information Protection and Electronic Documents Act (PIPEDA), California Consumer Privacy Act (CCPA), 201 CMR 17.00: Standards for the Protection of Personal Information of Massachusetts Residents (MA 201) requirements, and other residency locations of CipherTechs staff members and maintains a set of security and privacy controls that is reviewed and updated according to industry threats to CipherTechs’ business.

CipherTechs works with human resource related organizations to process employee data related to benefit packages, and background checks.

With a formal request, CipherTechs' employees have the right to view personal identifiable information CipherTechs may store at all times working with Human Resources and the Chief Technology Officer (CTO).

Employees may opt out of personal identifiable information (i) to be disclosed to a third party or (ii) to be used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized by the individuals. Our employees are provided with clear, conspicuous, and readily available mechanisms to exercise choice.

CipherTechs only requires individuals to disclose information related to processing of payroll and benefits, as well as running background checks prior to employment.

CipherTechs, as a private organization, adheres to all investigatory and enforcement powers required of it by law, including the Federal Trade Commission (FTC).

CipherTechs employees may, under certain conditions, invoke binding arbitration, if they feel as though their personal identifiable information has been released without prior approval or cause.

CipherTechs will disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements only as required by law.

CipherTechs maintains liability insurance and will take lawful action toward any third party organization which may take part in onward transfer of its employees personal information.