ACCO Brands Corporation and its wholly owned subsidiaries that are incorporated in any state or territory in the US, including ACCO Brands USA LLC and General Binding, LLC (collectively, “ACCO Brands”), recognize that Europe has established strict protections for the processing of European personal data, including the requirements to provide adequate protection for such data when transferred outside the European Economic Area (“EEA”), the United Kingdom, or the Swiss Federation (“Switzerland”). To provide adequate protection for Personal Data (as defined below) received from the EEA, the United Kingdom, and Switzerland, ACCO Brands has elected to self-certify to the EU-U.S. Privacy Shield Framework and Swiss-US Privacy Shield Framework, as operated by the U.S. Department of Commerce (collectively, “Privacy Shield”).
1. ACCO Brands' commitment to the Principles
ACCO Brands commits to comply with the Privacy Shield Principles (“Principles”) with respect to all personal data that we receive from the EEA, the United Kingdom, and Switzerland. Individuals whose personal data is received by ACCO Brands from other jurisdictions do not have the rights set out in this Statement.
2. Types of personal data collected
3. The purposes for collection and use
4. Types of third parties to whom we disclose personal data and purposes for disclosure
If you do not wish ACCO Brands to pass your personal data to a third party who subsequently uses your data for its own purposes, you can contact us via the details set out in Contact us below.
6. Accountability for onward transfer
Where required by the Principles, we will enter into written agreements with third parties requiring them to provide the same level of protection the Privacy Shield requires and limiting their use of the data to the specified services provided on our behalf.
Under certain circumstances, we may remain liable for the acts of our third party agents or service providers who perform services on our behalf for their handling of EU personal data that we transfer to them.
ACCO Brands maintains reasonable and appropriate measures to protect personal data from loss, misuse and unauthorised access, disclosure, alteration and destruction, taking into due account the risks involved in processing and the nature of the personal data.
8. Data Integrity and Purpose Limitation
ACCO Brands limits the collection, usage and retention of information to that which is relevant for the intended purposes for which it was collected, and takes reasonable steps to ensure that all data are reliable, accurate, complete and current.
You have certain rights under the Principles to access the personal data about you that ACCO Brands processes. To access such personal data, please make a request in writing to the contact details set out in Contact us below. We will respond to your request in accordance with the Principles.
10. FTC's investigatory and enforcement powers
ACCO Brands' commitments under the Privacy Shield, and compliance with the Principles, are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission.
If you have any complaint regarding ACCO Brand's compliance with the Principles, please contact us using the details set out in Contact us below. We will respond to your complaint within 45 days.
12. Independent dispute resolution body
For individuals in the EEA or the United Kingdom, if you feel that ACCO Brands has not satisfactorily resolved your complaint or has failed to respond to your complaint within 45 days, you may bring your complaint to the attention of your local data protection authority (“DPA”). The DPAs will establish a panel to act as an independent dispute resolution body who will investigate and resolve complaints brought under the Privacy Shield free of charge to you. ACCO Brands commits to cooperate with this panel as an independent body to resolve disputes relating to its compliance with the Principles. ACCO Brands will comply with any advice given by DPAs where they take the view that specific action is necessary to comply with the Principles and will provide the DPAs with written confirmation that such action has been taken. You can find the details of your local DPA here.
For individuals in Switzerland, unresolved Privacy Shield complaints can be referred to the International Centre for Dispute Resolutions-American Arbitration Association, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please visit http://go.adr.org/privacyshield.html for more information or to file a complaint. The services of ICDR-AAA are provided at no cost to you.
Under certain conditions, more fully described on the Privacy Shield website, you may invoke binding arbitration when other dispute resolution procedures have been exhausted.
13. Document Revisions
This Statement may be revised from time to time to reflect changes in data privacy laws, regulations and requirements. All revised Statements will be published here.
14. Contact us
If you have any questions about our adherence to the Principles or our participation in the Privacy Shield, please contact us: