The General Data Protection Regulation (GDPR)

Updated May 31, 2024
person icon

The information in this article applies to all Dropbox users, unless otherwise stated.

The General Data Protection Regulation, or GDPR, is an EU regulation that establishes a legal framework to protect the personal data of EU data subjects. The GDPR is the most significant piece of European data protection legislation since the EU Data Protection Directive of 1995, and many companies—including Dropbox—that do business in Europe have invested heavily in GDPR compliance.
 

The GDPR harmonizes data protection laws across Europe, and brings them up to speed with the rapid technological change that has occurred in the past two decades. It builds upon past legal frameworks in the EU, including the EU Data Protection Directive, and introduces new obligations and liabilities for organizations that handle personal data, as well as new rights for individuals in respect of their personal data. Organizations that are established in the EU, as well as organizations that process personal data of EU data subjects, are required to comply with the GDPR.

How does Dropbox comply with the GDPR?

Dropbox is committed to the security and the protection of our users' data in line with legal requirements and best practices at all times. In line with our commitment to our users, we have worked hard to ensure that Dropbox is GDPR compliant, including appointing a Data Protection Officer; re-architecting our privacy program to ensure that users can exercise their data subject rights; documenting our data processing activities; and bolstering our internal processes in the event of a security breach. We continue to make adjustments to ensure that, as further guidance continues to emerge from data protection authorities, our process and practices meet or exceed specific elements of the GDPR.

More information about Dropbox’s privacy practices can be found in the Dropbox Trust Center.

How to access the Dropbox Trust Center

highlighter icon

Note: You can’t use your Dropbox login to access the Dropbox Trust Center. 

You’ll need to log in to access all the reports and documentation. To request access:

  1. Go to trust.dropbox.com.
  2. Click Get Access in the top right.
  3. Enter your work email, then click Continue.
  4. Enter your details and click Submit Request.

Once registered, you can access private and public reports and documents.

highlighter icon

Note: You may need to sign a non-disclosure agreement to access certain private documents, but this can be easily done within the Trust Center. 

Was this article helpful?

Let us know how why it didn't help:

Thanks for letting us know!

Thanks for your feedback!

Other ways to get help