Privacy first!

"TRUST takes years to build, seconds to break and forever to repair."

With this in mind, Celonis has taken all required steps, and implemented additional, best-in-industry safeguards, to ensure compliance with applicable data privacy and data protection regulations such as GDPR (EU General Data Protection Regulation), providing you with the assurance that Celonis is a trustworthy processor of your personal data.

pexels-mike-chai-842339
Close
pexels-mike-chai-842339

Organisation

Privacy Information Management System

Celonis has implemented a holistic management system to ensure that all personal data is processed in compliance with applicable regulatory requirements and internal policies.

Data Protection & Privacy Team

A dedicated team monitors, maintains and updates the Celonis privacy program in close coordination with the external data protection officer of Celonis SE.

Employee Training & Awareness Measures

All Celonis employees are required to undergo mandatory annual training on data privacy. This training is supplemented by contractual obligations and individual awareness measures.

Supplier Lifecycle Management

Extensive assessment of new supplier prior to onboarding, along with regular audits thereafter, ensures that suppliers are retained only if they meet our high standards for processing personal data.

Continuous Improvement Process

Continuous self-assessments in the form of internal audits and process reviews ensure the sustainable implementation and continuous improvement of our privacy efforts.

Privacy by Design

Lawfulness, Fairness and Transparency

The EMS helps you to process personal data lawfully, fairly and in a transparent manner in relation to the data subject.

Purpose Limitation

The EMS supports the need to collect personal data only for a specific, explicit and legitimate purpose, and to retain such data only for as long as is necessary to fulfill such purpose.

Data Minimization

In order to visualize as-is processes within Celonis EMS, there is no inherent need to process user information or personal data. The depth of the analyses can be readily adjusted within the data provision, and your ability to configure of the analyses (limiting the data procession by privacy by default with configuration at set up possibilities) helps you to minimize the use of personal data within EMS.

Accuracy & Accountability

Through repeated synchronization with your Source System, we make it easy to keep all personal data accurate and up-to-date in your systems. The set-up and configuration of the EMS supports your efforts to be fully accountable for the use of personal data within the EMS.

Storage Limitation

Once personal data are no longer required to operate analyses within the EMS (including in the event of termination of your subscription) you can request the deletion of all personal data within the EMS, which is also subject to a set of defined deletion rules. Additionally, you have the ability to delete all data within your account at any time upon request to Celonis.

Integrity and Confidentiality

Industry best-practice security mechanisms ensure that all data processed within the EMS is safeguarded. Please refer to our dedicated webpage on Information Security.

Compliance

ISO27001_small

ISO 27001:2013

CERTIFICATION Information Security Management System

IS027701_small

ISO 27701:2019

CERTIFICATION Privacy Information Management System

6

GDPR

FRAMEWORK General Data Protection Regulation

Want to contact us?

If you have a privacy-related question or an issue to report, we're here for you. Just use the link below.

Dear visitor, you're using an outdated browser. Parts of this website will not work correctly. For a better experience, update or change your browser.