Help

Re: My client is in Europe, it is a GDPR breach if their data leaves Europe, Airtable storage in Eur

8012 0
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
alanclient
5 - Automation Enthusiast
5 - Automation Enthusiast
See Solution in Thread

‎Dec 02, 2022 03:43 AM

Dear community,

I'm seeking your help on this critical matter:

My client is in Europe, it is a GDPR breach if their data leaves Europe, does Airtable has storage in Europe? My client needs to upload videos to our tables. The attachment bucket seems to be a S3 bucket in the US. Do you have a quick workaround for this matter? Happy to provide our own data storage on S3 which is in Europe.

If we don't resolve this we have no choice but to move away from lovely Airtable :((

Thanks

Reply
8 Replies 8
goksan
6 - Interface Innovator
6 - Interface Innovator
See Solution in Thread

‎Dec 02, 2022 05:13 AM

Hey Alan 👋

Read the following on GDPR at Airtable, there's a contact email listed if you'd like to ask further questions.

Reply
Databaser
12 - Earth
12 - Earth
See Solution in Thread

‎Dec 02, 2022 05:38 AM

Airtable has an office in London now, so let's hope they will get full GDPR compliant in the near future.

Reply
Bill_French
17 - Neptune
17 - Neptune
In response to Databaser
See Solution in Thread

‎Dec 02, 2022 08:36 AM

The location of their office in the UK is irrelevant to GDPR compliance, nor does it signal such a possibility. They also have other offshore [sales] offices but no plans to co-locate data in these countries.

Reply
Bill_French
17 - Neptune
17 - Neptune
See Solution in Thread

‎Dec 02, 2022 08:37 AM

>>> Happy to provide our own data storage on S3 which is in Europe.

This won't magically achieve GDPR compliance because all the other data is off-shore and outside Europe.

0 Kudos
Reply
alanclient
5 - Automation Enthusiast
5 - Automation Enthusiast
In response to Bill_French
See Solution in Thread

‎Dec 04, 2022 01:26 PM

I appreciate your response, the 'other' data is not identifiable.

0 Kudos
Reply
alanclient
5 - Automation Enthusiast
5 - Automation Enthusiast
In response to Bill_French
See Solution in Thread

‎Dec 04, 2022 01:28 PM

Correct, depends on the functionality the office seeks. I hope would not be only sales.

0 Kudos
Reply
alanclient
5 - Automation Enthusiast
5 - Automation Enthusiast
In response to goksan
See Solution in Thread

‎Dec 04, 2022 01:31 PM

Will try to reach out to the privacy team. Thanks for the link.

0 Kudos
Reply
Bill_French
17 - Neptune
17 - Neptune
In response to alanclient
See Solution in Thread

‎Dec 04, 2022 02:52 PM

>>> ... the 'other' data is not identifiable.

And that somehow makes it not subject to GDPR despite the linkage between other fields in the record and the attachment documents?

It's my understanding that any data that is formulated in a manner such that it references identifiable data, makes all of the data "identifiable". Since the records themselves include a link to the attachments, I'm almost certain it matters not that the attachment is stored inside EU boundaries; data stored outside the EU provides the gateway and seamless rendering of data stored inside the EU. You should check with legal counsel on this point.

0 Kudos
Reply
Copyright © 2024 Khoros, LLC