Cronofy and Brexit
Cronofy is a UK registered and operating company. The UK government’s decision to leave the European Union means that Cronofy must prepare for, and meet the challenges that this decision will bring.
Data Location #
At Cronofy, we offer several data hosting options, including Germany and the United States (the full list is in our Data Centers documentation).
The Cronofy Service is fully GDPR compliant irrespective of which data center is chosen. However we recognize that for many users, their data remaining resident within jurisdictional boundaries is important.
Integrators’ can choose which data center they want to use for a given customer. There is no PII (personally identifiable information) transferred between our data centers. This means that, EU end-users’ calendar data can be synced to the Cronofy data center instance in Germany and be assured that the data will not leave the jurisdictional boundary of the EU.
If the Integrator chooses to process that data outside of the jurisdictional boundary of the EU, then that is subject to the appropriate regulations and agreement with those end-users, separate to the processing of the data by Cronofy.
UK GDPR #
On the 28 June 2021, The European Commission announced that UK provides adequate protection for personal data transferred from the EU to the UK under EU GDPR. The adequency decision means that under GDPR, data can continue to be transferred freely between the EU and the UK.
Upcoming changes #
Cronofy has made the decision to establish a new company in the Netherlands. This will provide our customers with further assurances in relation to the security of their data.
We will offer our EU customers the option to contract with Cronofy BV under Dutch law. Cronofy BV will become the center for GDPR related activity, and will be under the oversight of the Dutch data regulator.
If this is something you are interested in hearing more about, please contact us at email@example.com.
We will continue to update our policies, processes and agreements to reflect the current state of international data privacy regulations and their applicability to Integrators and End-Users.
Last updated: 14th October 2021.