We maintain strict data protection practices, including:
- UK-based data centers: Providing service selections to enable customers to restrict data location within the bounds of UK.
- Data Protection Policies: Establishing clear and comprehensive internal policies consistent with UK privacy laws.
- Employee Training: Annual training for all employees on data protection responsibilities.
- Data Audits: Netskope undergoes annual SSAE-18 SOC 2 Type II attestation through an independent, third-party auditor.
- Security Measures: Technical and organizational measures such as utilizing encryption, securing storage, and having strict access controls are implemented to ensure an appropriate level of security, taking into account the nature, scope, context, purpose of the processing, and the risks for the rights and freedoms of natural persons.
- Third-Party Assurance: All partners and vendors undergo security reviews involving a risk assessment and vetting procedure to ensure our partners and vendors meet our high standards.
- Breach Management: Privacy and Security Incident Response Plan is well documented, implemented, and regularly reviewed and tested.
- UK-based Data Protection Representative: Our Data Protection Representative, located in the UK, handles data protection inquiries, ensures compliance with UK privacy laws.
This page provides a high-level overview of our data protection practices under the UK’s data protection laws. We’re committed to protecting your data and ensuring transparency every step of the way.
If you have questions or concerns about how we handle your data, please contact our Data Protection Officer (DPO), who also serves as our UK Data Protection Representative at [email protected].
For more detailed information, please refer to our Privacy Policy or reach out to us directly.