As a platform for research used by scientists across the globe, Benchling takes data privacy seriously. We've taken a number of measures to ensure that we are ready for the EU General Data Protection Regulation (GDPR) which goes into effect on May 25, 2018:

  • We've written our Data Processing Agreement (DPA) to be GDPR-ready. If the GDPR applies to your company or you otherwise share or receive Personal Data (as defined by GDPR) with or from Benchling, and you don't already have a DPA in place with us, please email us at privacy@benchling.com and we'll be happy to send you our DPA.
  • We've conducted an internal audit of third-party services to identify subprocessors that we use to process EU Personal Data. We're in the process of signing data processing agreements with each subprocessor.
  • We have updated our GDPR Privacy Policy to reflect additional rights that EU residents have under GDPR.
  • We've appointed DP-Dock GmbH as our EU Representative to comply with GDPR - you can contact them at benchling@gdpr-rep.com.

How We Use Your Data

Our GDPR Privacy Policy describes how we use and process EU Personal Data. For users who are residents of the EU, United Kingdom, Lichtenstein, Norway, or Iceland, we've updated it to help clearly describe what GDPR means for you, what rights you have, and how you can exercise them.

Benchling's Data Protection Agreement

For Benchling Startup and Enterprise customers, we offer a Data Protection Agreement (DPA) that complies with GDPR Article 28. For EU-based customers, we offer the standard "model" contractual clauses. Email us at privacy@benchling.com if you'd like to sign a DPA.

Data Protection Governance and Management

Benchling runs a data protection program, aligned with ISO 27001 and led by the Benchling Chief Technology Officer. We have and will continue to invest in these areas - see our Security page for more details.

Further questions?

If you have further questions, don't hesitate to contact us at support@benchling.com.

Did this answer your question?