Copyright Clearance Center, Inc. (CCC) and RightsDirect B.V. (RightsDirect) take data security and privacy very seriously. For all our customers and business partners, please rest assured that we are taking all reasonable steps to achieve, and then maintain, the highest level of respect and protection for your data security and privacy in compliance with the law and with best practices.
For those of you who are aware of the various certification and compliance processes required to carry through on that commitment, we are proud to report the following: CCC (including its wholly owned subsidiary RightsDirect) has successfully completed two annual SOC 2 Type 2 audits (meeting the highest standard of “no-exceptions”) and is ISO27001 certified, as of January 2019, meeting the highest standard of that certification, as well (“no non-conformities”). Our next SOC and ISO audits are scheduled for the Fall of 2019. Our SOC and ISO preparedness activities enabled CCC to qualify in the initial group of applicants for the EU/US Privacy Shield and for recertification for 2018 and 2019. The company was certified in the Swiss/US Privacy Shield program in 2019. In addition, our online privacy notices are reviewed annually by TRUSTe. CCC is confident that these activities are enabling us to comply with the GDPR and other developing national and international privacy laws.
To check current certification status click here.