As a global company with users in nearly every country around the world, we are committed to implementing and maintaining a global data privacy program designed to protect the personal and confidential information entrusted to us by our customers, users and their end-users. You can learn more about our privacy program below.
To execute LogMeIn’s Data Processing Addendum (or “DPA”), please click here.
Standard Contractual Clauses
The Standard Contractual Clauses (or “SCCs”) are standardized contractual terms, recognized and adopted by the European Commission, whose primary purpose are to ensure that any personal data leaving the EEA will be transferred in compliance with EU data-protection law. LogMeIn has invested in a world-class data privacy program designed to meet the exacting requirements of the SCCs for the transfer of personal data. LogMeIn offers customers SCCs, sometimes referred to as EU Model Clauses, that make specific guarantees around transfers of personal data for in-scope LogMeIn services as part of its global DPA which can be found here. Execution of the SCCs helps ensure that LogMeIn customers can freely move data from the EEA to the rest of the world.
APEC CBPR and PRP Certifications
GDPR, CCPA, and Beyond
The General Data Protection Regulation ("GDPR") and California Consumer Privacy Act ("CCPA") represent significant developments in the evolution of data privacy regulation and highlight its growing importance for businesses and individuals alike. At LogMeIn, the privacy of our customers, users, and end-users is a top priority and we will continue to embrace positive developments in the data privacy landscape as that evolution continues.
LogMeIn’s Data Processing Addendum
In addition to maintaining Terms of Service and Privacy Policies designed to support and adapt to changing regulatory requirements and industry standard practices, LogMeIn is pleased to offer a comprehensive global DPA, available here, which is designed to meet the requirements of applicable data privacy laws and regulations, including the GDPR and CCPA.
Specifically, our DPA incorporates several GDPR-focused data privacy protections, including: (a) data processing details, sub-processor disclosures, etc. as required under Article 28; (b) SCCs (also known as Model Clauses) to permit lawful transfer of ‘personal data’ under Chapter 5; and (c) the incorporation by reference of LogMeIn's technical and organizational measures documentation.
Similar to GDPR, the CCPA is designed to give residents of California greater control over their data, including, but not limited to, rights to access and delete personal information, the right to exercise certain rights, and review certain statutory disclosures. We are dedicated to ensuring that our services continue to comply with the applicable provisions of the CCPA and that our privacy and security measures are meeting or exceeding industry standard practices. To account for CCPA our global DPA includes: (a) definitions which are mapped to CCPA; (b) applicable access and deletion rights; and (c) warranties that LogMeIn will not sell our users’ ‘personal information.’
TRUSTe Enterprise Privacy & Data Governance Practices Certification
To demonstrate our ongoing commitment to protect and responsibly handle the personal data of our customers, users, and their end users, LogMeIn has obtained the TRUSTe Enterprise Privacy & Data Governance Practices Certification. Built on the standards outlined in the TrustArc Privacy & Data Governance Framework, it addresses operational controls that are aligned with key privacy laws, ethical standards, and recognized third-party frameworks. To learn more, please visit our blog post, and to review our “TRUSTe seal”, please click here.
Data Protection Terms and Conditions
Processing Locations and Sub-processor Disclosures
Please visit the Trust & Privacy Center’s Product Resources page to review service or suite-specific hosting and processing locations, including applicable affiliate and third-party sub-processor disclosures. For best results, please filter by service or suite at the top of the Product Resources page.
Security and Privacy Operational Controls
Applicable third-party certifications, security measures (e.g., encryption types), data retention periods, and privacy commitments may be reviewed in the service or suite-specific Security and Privacy Operational Controls or “SPOC” documentation found in the Trust & Privacy Center’s Product Resources page. For best results, please filter by service or suite at the top of the Product Resources page.