Vurvey complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. More information about EU-U.S. Privacy Shield Framework is available here.

Vurvey complies with the General Data Protection Regulation regarding processing of personal data of people in the European Union. More information about GDPR is available here.

Vurvey is compliant with the CPRA and CCPA by building robust privacy and security protections into our services and contracts. The California Privacy Rights Act (CPRA) is a data privacy law that amends and expands upon the California Consumer Privacy Act (CCPA). You can find more information about the CCPA on the California Office of the Attorney General’s website.

The Vurvey cloud infrastructure is housed in highly secure, distributed data centers, which use state-of-the-art electronic surveillance and multi-factor access control systems. Data centers are staffed 24 hours a day by trained security guards, and access is authorized strictly on a least privileged basis. Environmental systems in the data centers are designed to be redundant and minimize unforeseen disruptions and all personnel must be screened when leaving areas that contain customer data.

If you have additional questions about our security and compliance policies, please email [email protected]