Subprocessors

I'm based in California. That state which recently adopted a mini-GDPR like policy called California Consumer Privacy Act (CCPA). CCPA was created to protect the privacy and data of consumers.

Intentions of the CCPA Act

Provide California residents with the right to:
  • Know what personal data is being collected about them.
  • Know whether their personal data is sold or disclosed and to whom.
  • Say no to the sale of personal data.
  • Access their personal data.
  • Request a business to delete any personal information about a consumer collected from that consumer.
  • Not be discriminated against for exercising their privacy rights.

Subprocessors

One of those requirements is that a company must have a subprocessors page on their site. A subprocessor is a third party company being used to render the service you are buying from a company. A list of subprocessors is typically located under the Company's Privacy Policy.

If you are data privacy conscious, it is imperative you know where your data is going and who is seeing your data.

Here is a living list of companies who are and aren't being transparent about 3rd party companies they engage and share your data with.

Transparent firms

Not so transparent firms

Comments

Post a Comment

Popular posts from this blog

Xero's Data Entry Tricks You Did Not Know About

Image
Transparency is wonderful and yields better decision making. On the flip side, it also bubbles up the marketing rubbish we all have been preached. Such is the case for Xero when CCPA data privacy regulations rolled in (January 2020) and Xero had to dust off some cobwebs and come clean to their customers on how customer data entry is being handled by their magic expense app. tl;dr Xero uses CloudFactory (cloud labor platform) for data extraction of customer business receipts & bills in order to provide automated data entry as an expense management solution. Marketing vs Reality As competition in the cloud became fierce, accounting software firms needed to release new features to give them a competitive advantage over competitors deploying daily into the cloud and directly into customer hands. With that was born the MVP (minimum viable product): marketing making bold claims for features barely matching those claims. Xero Expense App Data Entry Tricks Such is the Xero ...
Read more

HubDoc Harvests Your Logins

Image
HubDoc harvests your logins so it can provide you (the business owner) or the account data aggregation and extraction services. But at what cost? HubDoc markets itself as a service which gets your key financial docs in one place. Their privacy page  is flawless showcasing a company that follows all best practices. But as any adult has learnt, saying and doing sometimes can be worlds apart. Let's unpack this. Say goodbye to chasing documents & data entry. And say hello to data harvesting at it's best. If you haven't used HubDoc yet then you are safe. If you used HubDoc for yourself or your clients (as a bookkeeper or accountant) then I will pray for you that your client doesn't find out you gave away their logins to a 3rd party that stores it in plain text to allow a human labor force (they employ) to do it's magic, data extraction. The magic exposed Using the developer console I will show you HubDoc's dirty secret. Note on my inspection tool (...
Read more