GDPR Statement

In May 2018, the EU General Data Protection Regulation (GDPR) replaces the existing 1995 EU Data Protection Directive (European Directive 95/46/EC).

Lightcrest currently complies with all applicable data protection regulations and is committed to GDPR compliance across its relevant services when the GDPR takes effect May 25, 2018. Lightcrest has a dedicated team made up of cross-functional stakeholders overseeing Lightcrest’s GDPR readiness. Lightcrest’s ongoing compliance efforts include:

1. ASSESSMENT

Lightcrest is reviewing where and how our services collect, use, store and dispose of personal data and updating policies, standards, governance and documentation as needed.

2. CONTRACTUAL COMMITMENTS

Working in conjunction with our partners and customers, Lightcrest is reviewing our contractual commitments and updating as needed to directly address GDPR requirements. In the coming months, Lightcrest will respond to any requests to assist our partners and customers with their GDPR compliance. Lightcrest is also reviewing its supplier contracts to ensure GDPR compliance throughout its supply chain.

3. INTERNATIONAL DATA TRANSFER

In addition to reviewing Lightcrest’s contractual commitments meet the requirements to legally transfer data from the EU to the rest of the world under applicable law, Lightcrest is assessing plans to certify under the EU-US Privacy Shield Framework.

4. EMPLOYEE TRAINING AND AWARENESS

All Lightcrest employees must complete data privacy and security training. Lightcrest will supplement existing training modules with GDPR-specific content. In addition to these training requirements, Lightcrest conducts ongoing initiatives on a variety of topics, including data protection, security and privacy.

5. PARTNERS AND CUSTOMERS

Compliance with the GDPR requires a partnership between Lightcrest and our partners and customers in their use of applicable Lightcrest services. In this context, Lightcrest generally will act as a data processor and our partners and customers generally will act as data controllers. Working together, we hope to leverage opportunities within our relevant service offerings to assist our partners and customers in meeting their GDPR obligations.In the meantime, Lightcrest encourages its partners and customers to independently familiarize themselves with the GDPR.

© 2018 Lightcrest

We can be reached by sending e-mail to contact@lightcrest.com.