SafetyCulture
  • App Store
  • Google Play
  3. Legal
  5. Privacy Portal

Privacy Portal

Privacy FAQs

The information provided in these FAQs is for education purposes only. This information is not intended to be a substitute for you obtaining advice on your individual circumstances.

This information is current as at 31 May 2021.

What data do you collect?

Who owns the data uploaded to the SafetyCulture Platform?

Why do you collect my data?

Who do you share my data with?

Where is my data stored?

How secure is my data?

How long do you keep my data?

What controls and choices do I have regarding my data?

What safeguards are in place regarding the collection, use and transfer of my personal data?

Do your Terms and Conditions and Privacy Policy take into account regional data protection laws?

I’m located in the European Union, what are the implications of Brexit on my ability to use your service?

Where do I find a copy of your Privacy Policy?

Legal announcements

29 Oct 2021

New Standard Contractual Clauses

The European Commission has approved new Standard Contractual Clauses (SCCs) that facilitate the transfer of personal data outside the European Economic Area (EEA) to third countries where there is no adequacy decision in place (you can find a list of countries that have been recognised as having an adequate level of data protection here). The […]

29 Oct 2021

Adequacy decision: EU determines that UK has an adequate level of data protection

We previously published an article detailing the transfer of personal data between the European Economic Area (EEA) and the United Kingdom (UK) post-Brexit. You can find that article here. On 28 June 2021, the European Commission determined that the UK had an adequate level of data protection. This means that for transfers of personal data […]

20 May 2021

Data transfers under the GDPR after the UK’s withdrawal from the EU

To date, organisations have not had to make any changes to how they transfer personal data between the European Economic Area (EEA) and the United Kingdom (UK) as a result of Brexit. This may change after 30 June 2021, if the European Commission does not make an adequacy decision in relation to the UK. We […]

20 Apr 2021

Data transfers under the GDPR to the US after the Court of Justice of the European Union’s decision in the Schrems II case

On 1 August 2016, the EU-US Privacy Shield (Privacy Shield) framework become operational. This allowed organisations in the European Union (EU) to transfer personal data to certified organisations in the United States (US) without the need for further safeguards. An organisation was first required to be certified under the Privacy Shield before it could receive […]

Additional resources