The GDPR provides for several mechanisms to facilitate transfers of personal data outside of the EU. These mechanisms are aimed at confirming an adequate level of protection or ensuring the implementation of appropriate safeguards when personal data is transferred to a third country.

We take all steps reasonably necessary to ensure that our customers’ data is treated securely and in accordance with the GDPR. In particular, this means that their personal data will only be transferred to a country or organisation that provides an adequate level of protection. For example, where the European Commission has determined that a country provides an adequate level of protection, or where the recipient is bound by standard contractual clauses according to conditions provided by the European Commission (“EU Model Clauses”),  or where the organisation has other appropriate safeguards in place such as the EU-US Privacy Shield or Binding Corporate Rules.

Any data entered into the Genovo application is stored and processed using Microsoft’s secure Azure Cloud service within the EU (Dublin).