Safe Harbor Compliant Hosting for Data Privacy.
Secure your critical data with a company that meets the rigorous privacy principles set forth by and self-certifies with the U.S.-EU Safe Harbor Framework.
Implement compliant solutions with a partner that works with you to ensure that they incorporate the context of your specific business needs and self-certifies with U.S.-EU Safe Harbor.
Meet stringent data security standards with OnRamp’s comprehensive, fully-compliant solutions that address the confidentiality, availability and integrity of sensitive data.
Safe Harbor Hosting Overview
OnRamp Self-Certifies with the U.S-EU Safe Harbor Framework.
As a Data Center provider that deploys Hybrid Hosting solutions for companies with high security needs and sensitive data, OnRamp’s people, processes and technology comprehensively ensure compliance. OnRamp self-certifies with U.S.-EU Safe Harbor and agrees to adhere to the Safe Harbor requirements which the Federal Trade Commission enforces. Using the Safe Harbor Framework as a supplement to our existing policies, processes and procedures which we have created to govern our relationship with our clients, we offer Safe Harbor Compliant Hosting to all of our customers both inside and outside the 28 EU member states.
In October of 1998, the European Commission’s Directive on Data Protection prohibited the transfer of personal data to non-EU countries, essentially putting a bar on businesses that would come in contact with data from EU citizens due to the differences in privacy protection methods applied on an international level.
Bridging the gap between regulations issued in the U.S. and EU for data privacy, the Safe Harbor Framework was created by the Department of Commerce in coordination with the European Commission in the year 2000 to allow U.S. businesses a means of self-certifying their compliance with European privacy standards.
Safe Harbor Privacy Principles
Rigorous Privacy Principles for Processing Sensitive, Critical Customer Data.
OnRamp has developed our own self-regulatory privacy program that adheres to the seven privacy principles outlined below: Notice, Choice, Onward Transfer (Transfers to Third Parties), Access, Security, Data Integrity, and Enforcement and the 15 FAQs that make up the framework.
Organizations must notify individuals of why they collect personal information about them, the types of third parties to which they disclose this information and the efforts the company employs to limit the unauthorized disclosure of such sensitive data. In addition, they must provide a means for open communication with the organization for inquiries and complaints.
Organizations must allow individuals the choice to opt out of sharing their information with a third party or if used for a different purpose than which it was originally collected.
Onward Transfer (Transfers to Third Parties)
In order to continue with the transfer of sensitive data to a third party, the first two principles (Notice & Choice) must be met. Secondly, the organization receiving this information, must also comply with the U.S.-EU Safe Harbor Framework’s seven privacy principles or provide a written statement to demonstrate they will uphold these principles in their dealings with this data.
Individuals must have the ability to access, amend or delete information about themselves unless deemed inappropriate for the organization to provide this function.
Organizations must take reasonable and appropriate action in their dealings with personal information to prevent loss, misuse and unauthorized access, disclosure, alteration and destruction.
Organizations must take reasonable and appropriate action in their dealings with personal information to ensure data is reliable for its intended use, accurate, complete, and current.
There must be an effective means of enforcing these rules with proper methods of recourse and an obligation to solve any failures to meet the requirements of these principles.
An overview of the U.S.-EU Safe Harbor Framework can be found on the export.gov website at U.S.-EU Safe Harbor Overview.
OnRamp Embodies a Culture that Emphasizes Security.
OnRamp’s Compliant Hosting security and processes are maintained by audited physical, technical and administrative measures to meet the most stringent compliance requirements.
SSAE 16 / AICPA SOC 2 Type 2 Certified.
Designed and built with the most advanced engineering, security and technology systems OnRamp’s state-of-the-art Data Centers provide the highest levels of availability and uptime.