CREST SFA

The privacy policy by is a legal document or statement that discloses how CREST SFA gathers, uses, discloses, and manges their customers' data.

Get the contact information for CREST SFA privacy team or DPO.

The DPA is a contract between you and CREST SFA that has to be in place when processing personal data and transferring it to CREST SFA.

A description of the different categories of personal data and data subjects that CREST SFA is handling with the location of CREST SFA.

Subprocessors are companies that provide a service for CREST SFA and who have or potentially will get access to personal data of CREST SFA customers.

The location of the subprocessors that are processing data on behalf of CREST SFA. If data is sent outside the EEA there must be a legal basis for these transfers.

The basis for CREST SFA transfers of personal data outside EEA. Vendors can also add a description of their own impact assessment for data transfers.

Statement or documentation of the security measures and practises CREST SFA have in place when handling personal data.