Planet & the GDPR

Planet Labs GDPR Compliance

The European Union’s General Data Protection Regulation (GDPR) enters into force on May 25, 2018 and has extraterritorial scope.

The Regulation applies to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not.

The Regulation also applies to the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to
the offering of goods or services, irrespective of whether a payment of the data subject is required, to such data subjects in the Union; or
the monitoring of their behavior as far as their behavior takes place within the Union.

Planet Labs supports the principles relating to the processing of personal data under GDPR. Planet Labs will comply with GDPR to ensure the lawfulness of processing in the context of delivering products and services to our clients. Planet Labs is also continuously implementing and updating appropriate technical and organizational measures to ensure a level of security appropriate to the processing of personal data.

Planet Labs is taking measures to ensure we can continue to support international data transfers by updating our Privacy Policy and Terms of Use.

Here are the key changes made to the Privacy Policy and Terms of Use with respect to personal data:

  • Use of Consent. Requests for consent to Planet Labs’ use of personal data will be presented in a manner which is clearly distinguishable from the other matters, in an intelligible and easily accessible form, using clear and plain language.
  • More Control. Data subjects will have more options with respect to determining the way their personal data is processed.
  • Disclosure. Data subjects will be able to obtain more information about to whom the personal data have been or will be disclosed.
  • Enhanced Rights. Data subjects will enjoy greater rights with respect to access to, rectification and erasure of their personal data.

Planet Labs endorses the objectives of GDPR to protect fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data. Compliance with the principles of GDPR requires a cooperative effort between Planet Labs and its clients in relation to use of Planet Labs’ products and services. Planet Labs also expects clients to comply with those principles when clients provide Planet Labs with personal data, in particular with respect to data subjects in the European Union.

Starting on May 25, 2018, users of the Planet Labs website(s), products, services and applications (the “Services”) will be requested and required to give express prior consent to the processing of their personal data by Planet Labs when making use of the Services.

Additionally, if users need to ensure an adequate level of protection in a third country to support international data transfers by executing European Union Standard Contractual Clauses, Planet Labs is prepared to assist. If you are a controller or processor and intend to transfer personal data from within the European Union, provide personal data of data subjects who are in the European Union, or are otherwise subject to GDPR when supplying personal data to Planet Labs, you have the option to execute Planet Labs’ Personal Data Processing Addendum. In such case, please contact pdpa@planet.com.

We at Planet Labs look forward to the continued provision of Services. If you have further questions about our Privacy Policy or Terms of Use, please contact legal@planet.com.

Effective May 25, 2018.