Press

Optimizely Earns EU-US Data Privacy Framework Certification

The digital experience leader has met and will continue to comply with the requirements of the new cross-border framework.

London, November 29, 2023 – Optimizely, the leading digital experience platform provider, today announced that it is officially a certified organization under the EU-US Data Privacy Framework (DPF). Optimizely has also applied for certification under the UK-US and Swiss-US Data Privacy Frameworks.

Continued participation in the program by Optimizely signifies to its customers and its partners, that the organization has established mechanisms for the transfers of Customers’ personal data transfers to the US from the EU that are consistent with applicable laws.

The new DPF is a set of rules and binding safeguards that govern the transfer of personal data between the EU and the US, replacing the previous EU-US Privacy Shield. Under the new DPF, Optimizely has another facility to frictionlessly and securely flow personal data between the EU, UK and Switzerland and US companies. This further limits access to data by US intelligence agencies to what is necessary and proportionate to protect national security and introduces a new two-tier redress system for European individuals to challenge the access and use of their data by US intelligence agencies.

In simplifying the legal basis for transatlantic data transfers, the DPF further bolsters Optimizely’s other transfer mechanism under the Standard Contractual Clauses.

“We are proud to share that Optimizely has completed its self-certification and that we are committed to complying with the framework’s principles,” said Peter Yeung, Chief Information Officer and Global Data Protection Officer at Optimizely. “Our participation reinforces Optimizely’s dedication to privacy compliance and assures our stakeholders that we are continually abiding by legal and ethical data handling practices. Optimizely is deeply committed to privacy, compliance, and data security, ensuring that customers' data is protected and handled responsibly.”

By adhering to industry-leading standards and regulations, such as GDPR and the DPF, Optimizely demonstrates its dedication to safeguarding user information. Continuous investments in advanced AI-driven security measures, including encryption, access controls, and regular audits, maintenance of a robust security posture continue to move forward. Optimizely's commitment to privacy and compliance fosters trust and confidence among its customers, partners, and end-users, enabling them to leverage the platform's capabilities without compromising data protection.

To learn more about Optimizely’s privacy policy, visit - https://www.optimizely.com/legal/privacy-notice/


To see Optimizely’s DPF certification, visit – https://www.dataprivacyframework.gov/s/participant-search/participant-detail?id=a2zt0000000PD4sAAG&status=Active

About Optimizely

Optimizely is on a mission to make the lives of marketers better with Optimizely One, the world’s first operating system for marketing teams. Optimizely One combines industry-leading solutions across content management, content marketing, experimentation, commerce and personalization, powering every stage of the marketing lifecycle through a single, AI-accelerated workflow. With the flexibility of a fully composable platform, Optimizely is proudly helping global brands like H&M, Salesforce, Zoom and Toyota create content with speed, launch experiments with confidence, and deliver experiences of the highest quality. Learn more at optimizely.com. 

Optimizely, Optimizely One, and NetSpring are the trademarks of Optimizely North America Inc., and are registered (or registrations are pending) in the US, EU, UK and other countries. All third-party trademarks cited are the property of their respective owners and are used only for reference purposes.