Copyright Clearance Center (CCC) and RightsDirect take data security and privacy very seriously.
For those of you who are aware of the various certification and compliance processes required to carry through on that commitment, we are proud to report the following: CCC (including its wholly owned subsidiary RightsDirect) have successfully completed recent audits required to achieve for SOC 2 Type 2 and for ISO 27001 certification for various of its licensing and RightFind businesses. We anticipate ISO 27001 certification in late 2018. Our SOC and ISO preparedness activities enabled CCC to qualify in the initial group of applicants for the EU/US Privacy Shield and for recertification for 2018. (CCC’s data security and privacy team is actively reviewing the recent decisions by the Court of Justice of the European Union and the Swiss Federal Data and Information Commissioner related to the Privacy Shield and will update this statement as appropriate.) In addition, our online privacy notices have been recertified annually by TRUSTe. To check current certification status check here. CCC is confident that these activities are leading us to GDPR compliance as well.