Snowflake Inc. and its affiliates and subsidiaries (“Snowflake“, “we“, “our” or “us“) have self-certified with the EU-US and Swiss-US Privacy Shield Frameworks as set forth by the US Department of Commerce regarding the transfer of personal data from the European Union and Switzerland to the United States as further described in our certification on the Privacy Shield website at www.privacyshield.gov. For convenience, we have described generally the scope of that certification below.
Scope. Snowflake provides cloud computing solutions and associated services to businesses all over the world, acting as a data processor on behalf of those businesses. Snowflake’s Privacy Shield certification applies to the personal data that these businesses transfer to us from the European Union and Switzerland for the provision of our services, except where any of our agreements with those businesses stipulate a different adequacy mechanism recognized by the EU commission (e.g., the model clauses). Snowflake will comply with the Privacy Shield Principles agreed to by the U.S. Department of Commerce and the European Commission in respect of such personal data. The personal data types that our customers put into our services is at their discretion (subject to any limitations in our contracts) and we only processes it in accordance with their instructions (as set forth in those contracts, including the applicable Customer Data Processing Addendum, the current version of which is available at https://www.snowflake.com/legal/). Snowflake’s participation in the Privacy Shield also applies to Snowflake’s human resources data and internal business operations data from the EEA and Switzerland for which Snowflake is a controller. Snowflake’s participation in the Privacy Shield does not apply to any other personal data not described in this Privacy Shield Statement.
To learn more about the Privacy Shield program, and to view our certification, please visit www.privacyshield.gov.
Third Party Sub-processors. Snowflake uses third party sub-processors to help us provide our services and those sub-processors may process personal data. Snowflake remains responsible and liable under the Privacy Shield Principles for our third party sub-processors as set forth in the Privacy Shield Principles.
- Inquiries, Complaints and your Rights. If you have any questions about this Privacy Shield Statement or wish to make a complaint, we encourage you to contact us at [email protected]. For any complaints that cannot be resolved with Snowflake directly, Snowflake has chosen to cooperate, for the purposes of the EU-US and Swiss-US Privacy Shield Frameworks, with the JAMS Privacy Shield Program. Information on how to contact JAMS is available at https://www.jamsadr.com/eu-us-privacy-shield. Under certain conditions, as further explained in the Privacy Shield Principles, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted. If you are or have been a Snowflake employee, contractor, or job applicant, you have the right to complain to a data protection authority about our collection and use of your personal data. Contact details for data protection authorities located in the EEA are available here and those located in Switzerland are available here. In addition, Snowflake is subject to the investigatory and enforcement powers of the US Federal Trade Commission (FTC).
Last updated: 15 October 2019