What is the Data Act?
The EU Data Act is a new law designed to make data sharing fairer and more flexible for customers of cloud and SaaS services, such as Cleeng. It aims to improve customer rights, including easier switching between providers, access to data, and strong transparency about how data is handled.
How is is Cleeng Complying?
Cleeng is fully committed to working in line with the Data Act. Here’s what this means for our EU-based customers and customers providing Customer Content to Users located within the EU:
-
Data Portability & Switching:
Customers can request an export of their data at any time if they wish to switch to a new provider or migrate to their own systems. The exported data will be provided in standard, machine-readable formats and will include essential information like subscriber data, transactions, and subscription details. For more information please see sections: How to understand exported data? and How to export data to other tools?.
-
Support During Switching:
Cleeng will offer reasonable support during the switching process and will ensure that service continuity, security, and transparent communication are maintained throughout. Notice periods, transitional support, and fair fee structures are set out in customer contracts.
-
Transparency on Government Access:
-
Jurisdiction of ICT Infrastructure
Cleeng’s ICT infrastructure for data processing services is subject to the jurisdiction of the Netherlands. All contracts with customers are governed by Dutch law, unless explicitly stated otherwise.
-
Measures to Prevent Unlawful Governmental Access or Transfer
To comply with the EU Data Act Article 28, Cleeng implements the following measures:
- Technical Measures: Data is encrypted in transit and at rest; access is authenticated and logged; and regular security audits are conducted to ensure integrity and confidentiality.
- Organizational Measures: Access to non-personal data by staff is restricted to a need-to-know basis and is subject to comprehensive internal access controls and regular staff training.
- Contractual Measures: Any request by governmental authorities for access or transfer of non-personal data is subject to Cleeng’s validation process, which includes a thorough legal review to verify compliance with Dutch and Union law. Cleeng will challenge requests that conflict with applicable legislation or data sovereignty requirements.
-
Customer Information: In all cases, Cleeng undertakes to inform affected customers about government data access or transfer requests unless legally prohibited from doing so.
These procedures ensure that non-personal data held within the EU is not made accessible to or transferred at the request of non-EU governmental authorities if such access/transfer would conflict with Dutch or Union law.
-
Your Rights are Clearly Outlined:
All customers receive a Master Service Agreement plus a special Data Act Annex detailing these rights and procedures.
Where Can I Learn More?
For more information or to see exactly how your rights are protected, you can review your Master Service Agreement and the Cleeng Data Act Annex.
Cleeng is committed to offering a transparent, fair, and fully compliant service experience for all EU customers - making it easy for you to access, export, or move your data, with no surprises.
-