TokenEx Data Sovereignty
We respect the citizens, organizations, and countries where we protect sensitive data and take privacy and data protection issues seriously. Our most important asset is our relationship with our user community. We are committed to maintaining the availability, confidentiality, integrity and security of information about our users and their organizations in every country that we operate. This adherence supports many different data security controls based upon the governing/regulating body of each particular country.
Your information may be processed in the country in which it was collected and in other countries, including the United States, where laws regarding processing of sensitive information may be less stringent than the laws in your country. TokenEx will comply with the applicable laws and regulations protecting the privacy of personally identifiable information in the jurisdictions in which TokenEx operates. Where appropriate, specific jurisdictions may require supplemental terms to this Policy in order to comply with local laws.
Privacy Shield and Safe Harbor – United States
TokenEx complies with both the EU-U.S. Privacy Shield Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information to and from the European Union, the United States, the member countries and Switzerland, as applicable to each framework. TokenEx has certified to the Department of Commerce that it adheres to both the Privacy Shield Principles and the U.S.-Swiss Safe Harbor Principles. If there is any conflict between the terms in this Policy and the Privacy Shield Principles and the U.S.-Swiss Safe Harbor Principles, the Privacy Shield Principles or the U.S.-Swiss Safe Harbor Principles, as applicable, shall govern. To learn more about the Privacy Shield Principles and the U.S.-Swiss Safe Harbor Principles, and to view TokenEx’s certification for both, respectively. The Federal Trade Commission has jurisdiction over TokenEx’s compliance with the EU-U.S. Privacy Shield Framework. Privacy Shield and Safeharbor
Office of the Australian Information Commissioner – Australia
The Privacy Act 1988 (Privacy Act) regulates how personal information is handled. The Privacy Act defines personal information as: information or an opinion, whether true or not, and whether recorded in a material form or not, about an identified individual, or an individual who is reasonably identifiable.
- Common examples are an individual’s name, signature, address, telephone number, date of birth, medical records, bank account details and commentary or opinion about a person. In addition to the APPs, the Privacy Act also covers more specific matters that entities, including some small businesses, may be required to comply with.
The Privacy Act includes thirteen Australian Privacy Principles (APPs), which apply to some private sector organizations, as well as most Australian and Norfolk Island Government agencies. These are collectively referred to as ‘APP entities’. The Privacy Act also regulates the privacy component of the consumer credit reporting system, tax file numbers, and health and medical research.
Australian Privacy Principles — A Summary For APP Entities
Privacy Act 1988