Data Transfer Addendum FAQ

European Court of Justice’s Decision Regarding the EU‑US Safe Harbor Framework

ServiceNow respects the privacy of its customers and is committed to assisting them in validly transferring personal data from the EU to the US in compliance with the national data protection laws of the European Union. The European Court of Justice’s decision on October 6, 2015 invalidating the EU‑US Safe Harbor Framework does not impact our operations nor change our commitment to ensuring the protection of our customers’ data.  In response to the Court’s decision, ServiceNow is offering customers a data transfer addendum incorporating the European Commission’s Model Clauses (controller‑to‑processor).

What is Safe Harbor?

The EU‑US Safe Harbor Framework was implemented by the US Department of Commerce and the European Commission to facilitate the legal transfer of personal data from the EU to US‑based companies that self‑certified compliance with the Safe Harbor Principles. Please visit the US Department of Commerce Website for additional information about Safe Harbor.

What was the Court’s Decision?

On October 6, 2015, the Court of Justice of the European Union issued its judgment in the Schrems v. Facebook case, invalidating the EU‑US Safe Harbor Framework as a valid mechanism for transferring personal data from the EU to the US.

With Safe Harbor Invalid, What are my Options as a ServiceNow Customer?

The European Commission has also approved standard contractual clauses as a valid mechanism for transferring personal data from the EU to the US. These standard contractual clauses are commonly referred to as the “model clauses.” 

ServiceNow is offering customers a data transfer addendum incorporating the model clauses.

Customers should sign and return the completed data transfer addendum to modelclauses@servicenow.com.

Questions?

Please open a support ticket with our technical support team via the support portal.