IPF's commitment to GDPR
Data Protection - GDPR

Changes brought about by the EU regulatory framework for data protection in the twenty-first century. GDPR (General Data Protection Regulation) came into effect in May 2018. The changes are designed to enable individuals to better control their personal data, with GDPR replacing the old Data Protection Directive 95/46/EC.

Countries where your data is processed

IPF International processes personal data in the EU and also might transfer personal data to a third country outside the EU. These are the countries we might transfer personal data to:

United States of America 

For any occasion in which our suppliers process on our behalf personal data in countries which do not provide sufficient level of protection to your rights, we carefully assess the relevant circumstances and make sure appropriate safeguards are put in place so that your rights are not undermined. All of our suppliers who process your data outside the European Economic Area are required to sign our Module contractual clauses and we regularly check the level of security provided to personal data processed on our behalf. We ensure that conditions to enforce your rights and effective legal remedies are available. Any potential external supplier is subject to an internally conducted security pre-assessment, mutual rights and obligations are carefully addressed in the Data Processing Agreement.