Start a Project

Privacy Shield Statement

At ClickPier, we prioritize the protection, ethical handling, and transparent processing of personal data across all global operations. As a digital-first company serving clients, partners, and users worldwide, we operate within a diverse ecosystem of international privacy regulations. This document explains how ClickPier manages personal information transferred from the European Union (EU), European Economic Area (EEA), United Kingdom (UK), and Switzerland to the United States.

This Privacy Shield Statement & EU-U.S. Data Transfers page outlines our commitment to lawful processing, secure global data movement, and adherence to industry compliance standards. Our practices align with major privacy frameworks, including the GDPR, UK GDPR, and other relevant data protection laws.

Although the Privacy Shield Framework itself was invalidated by the Court of Justice of the European Union, ClickPier remains committed to the same principles of accountability, transparency, and robust data governance reflected in the original framework. We continue to follow its core values as part of our broader privacy architecture.

Our Approach to Global Data Transfers

Global operations require efficient, secure data movement. However, ClickPier does not compromise privacy or compliance while enabling cross-border digital workflows. When personal data is transferred from the EU, EEA, UK, or Switzerland to the United States, we ensure:

  • Lawful transfer mechanisms are in place
  • Individuals maintain enforceable rights
  • Data is handled with strict technical and organizational security measures
  • Processing activities remain transparent and purpose-specific
  • Only the minimal required data is transferred

We ensure that all transfers align with GDPR Chapter V requirements and that each partner, vendor, or platform involved meets equivalent privacy obligations.

Legal Mechanisms for EU–U.S. Data Transfers

To support secure international data transfers, ClickPier uses one or more of the following legally recognized safeguards:

1. Standard Contractual Clauses (SCCs)

We incorporate the latest EU-approved SCCs into our agreements with clients, partners, and vendors. These clauses define how personal data must be protected throughout its entire lifecycle.

2. Data Processing Agreements (DPAs)

All partners processing EU-based personal information on our behalf must sign a DPA ensuring compliance with GDPR, proportionality, and security standards.

3. UK International Data Transfer Addendum

For transfers originating in the United Kingdom, we use the UK Addendum or International Data Transfer Agreement (IDTA), depending on client requirements.

4. Swiss FDPIC-Compliant Addendums

Transfers from Switzerland follow the Federal Act on Data Protection (FADP) frameworks, ensuring adequate safeguards identical to GDPR-level protection.

5. Supplemental Technical & Organizational Measures

Beyond legal contracts, we apply extra layers of security to counter external access risks and ensure confidentiality, integrity, and availability of data.

Commitment to Privacy Shield Principles

Even though the EU–U.S. Privacy Shield Framework is no longer recognized as a valid transfer mechanism, ClickPier voluntarily upholds the principles on which it was built. These principles guide how we manage and safeguard personal information:

  1. Notice
     We inform users about the purpose of data collection, processing, and sharing practices in clear, accessible language.
  2. Choice
     Users can opt out of certain uses of their personal information, including marketing-based processing or third-party sharing.
  3. Accountability for Onward Transfers
     Partners receiving EU personal data must follow strong privacy requirements and may only process information for approved purposes.
  4. Security
     We apply physical, administrative, and technical safeguards to protect data against unauthorized access or misuse.
  5. Data Integrity & Purpose Limitation
     Data is processed only for legitimate, defined purposes, and is stored no longer than necessary.
  6. Access
     Individuals have rights to view, correct, restrict, or delete personal information associated with them.
  7. Recourse, Enforcement & Liability
     We maintain systems to address data concerns, resolve disputes, and uphold accountability in cross-border processing.

Your Rights Under EU, EEA, UK, and Swiss Regulations

ClickPier respects and enables all data subject rights granted under GDPR, UK GDPR, and Swiss FADP, including:

  • Right to access personal data
  • Right to rectification and correction
  • Right to erasure (“right to be forgotten”)
  • Right to restriction of processing
  • Right to data portability
  • Right to object to specific processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

Users may submit rights requests at any time using our dedicated privacy contact channels.

How We Protect Your Data

ClickPier maintains a comprehensive security framework designed to safeguard personal information throughout international transfers. This includes:

Encryption Protocols

End-to-end encryption is implemented for data in transit and at rest.

Access Controls

Role-based permissions ensure only authorized personnel can access personal data.

Monitoring & Auditing

We regularly review systems for vulnerabilities and enforce strict logging and monitoring.

Data Minimization Practices

Only essential data required for operational functions is collected and retained.

Incident Response Procedures

In the rare event of a security incident, we have systems to detect, contain, and resolve threats quickly.

Onward Transfers & Third Parties

ClickPier partners with reputable third-party service providers who meet or exceed global privacy standards. Before engaging any vendor, we conduct:

  • Risk assessments
  • Compliance evaluations
  • Security audits
  • Contractual GDPR-aligned obligations

     

These partners may include:

  • Hosting providers
  • Analytics platforms
  • CRM systems
  • Payment processors
  • Advertising platforms

No third party is permitted to use personal data for independent purposes without user consent or lawful justification.

Data Storage & Retention

We store EU, EEA, UK, and Swiss personal data only as long as required to fulfill legitimate business purposes, comply with legal obligations, or maintain operational integrity.

Retention timelines depend on:

  • The service used
  • Contract duration
  • Regulatory requirements
  • User consent and preferences

When data is no longer needed, it is securely deleted or anonymized.

Dispute Resolution & Complaints

ClickPier provides multiple avenues for resolving privacy issues:

  1. Contact our privacy team directly
  2. Request clarification or correction of personal data
  3. File a complaint with your regional data protection authority

We aim to resolve all concerns promptly, transparently, and in full accordance with applicable laws.

Children’s Data

ClickPier does not knowingly collect or process personal data from children under the age required by local privacy laws. If we discover such data was processed unintentionally, we delete it immediately.

Updates to This Policy

This Privacy Shield Statement & EU–U.S. Data Transfers page may be updated to reflect:

  • Regulatory changes
  • Security improvements
  • Operational updates
  • New data protection commitments

All updates will be posted on this page with a revised “Effective Date.”

Contact Information

For privacy-related questions, concerns, or rights requests, contact us at:

Email: [email protected]