Greenberg Traurig is committed to the security of the data entrusted to us by our clients. To this end, we have joined a small group of leading law firms that have obtained the highest level of data security certifications:
- The recognized international standard ISO/IEC 27001:2013 certification for our critical data systems, including our document management system, email system, and our U.S. data centers and
- Privacy Shield designed by the U.S. Department of Commerce and European Commission and Swiss Administration specifying data protection requirements needed to be in place when transferring personal data from the European Union and Switzerland to the United Sates.
The process by which both certifications are achieved is thorough but critical in today's data-driven business climate. The ISO/IEC 27001:2013 standard specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system, including compliance with more than 100 controls in areas covering Access Control, Encryption, Incident Management, Business Continuity, Policies, Human Resources, Asset Management, and beyond. Privacy Shield certification requires all Privacy Shield participants to declare their commitment to complying with the Privacy Shield Principles which is enforceable under U.S. law. These principles include providing free and accessible compliant dispute resolution, cooperating with the Department of Commerce, maintaining data integrity and purpose limitation, ensuring accountability for data transferred to third parties, transparency related to enforcement actions and ensuring commitments are kept as long as data is held.
This is more than just about better technology; it is about optimizing the way we think and act to protect our clients, online or offline, because clients’ best interests are at the core of everything we do.