As a platform for research used by scientists across the globe, Benchling takes data privacy seriously. We've taken a number of measures to ensure that we are ready for the EU General Data Protection Regulation (GDPR) which went into effect on May 25, 2018:
We've written our Data Processing Agreement (DPA) to be GDPR-ready. If the GDPR applies to your company or you otherwise share or receive Personal Data (as defined by GDPR) with or from Benchling, and you don't already have a DPA in place with us, please email us at firstname.lastname@example.org and we'll be happy to send you our DPA.
We've conducted an internal audit of third-party services to identify subprocessors that we use to process EU Personal Data. We're in the process of signing data processing agreements with each subprocessor.
We've appointed DP-Dock GmbH as our EU Representative to comply with GDPR - you can contact them at email@example.com.
How we use your data
Benchling's Data Protection Agreement
For Benchling Startup and Enterprise customers, we offer a Data Protection Agreement (DPA) that complies with GDPR Article 28. For EU-based customers, we offer the standard "model" contractual clauses. Email us at firstname.lastname@example.org if you'd like to sign a DPA.
Data protection governance and management
Benchling runs a data protection program, aligned with ISO 27001 and led by the Benchling Chief Technology Officer. We have and will continue to invest in these areas - see our Security page for more details.
If you have further questions, don't hesitate to contact us at email@example.com.