GDPR

Data Processing Agreement

Bitrix24 provides all of its customers from the European Union with the digitally signed Data Processing Agreement and information about Bitrix24 infrastructure, sub-processors and joint controllers.

International Data Transfers

Data in Bitrix24.eu, Bitrix24.uk, Bitrix24.de, Bitrix24.pl, Bitrix24.it, Bitrix24.ae, Bitrix24.com.tr and Bitrix24.fr domain zones is hosted inside the European Union in Frankfurt, Germany with Amazon Web Services data centers, which are fully GDPR compliant - https://aws.amazon.com/blogs/security/all-aws-services-gdpr-ready/.

Bitrix24.com, Bitrix24.co, Bitrix24.in, Bitrix24.es, Bitrix24.in, Bitrix24.id, Bitrix24.jp, Bitrix24.mx, Bitrix24.vn Bitrix24.com.br, and Bitrix24.cn accounts are hosted in the United States subject to EU-U.S. Data Privacy Framework self-certification.Please note that commercial Bitrix24 account users can request their data to be transferred to the EU data centers via helpdesk - https://helpdesk.bitrix24.com/ticket.php. On-premise Bitrix24 editions are also available for purchase.

Security Statement

We take a number of steps to protect the security and integrity of data stored with Bitrix24. All web connections for data transfer encrypted, data is isolated, and two factor authorization is available (Bitrix24 OTP or Google Authenticator). Full information on Bitrix24 security mechanisms and protocols is available at https://www.bitrix24.cn/security/.