SugarCRM has established an extensive Data Protection Program. The program includes policies and guidelines, risk assessments, incident handling, and awareness and training. Through our privacy policy and internal guidelines we ensure all employees are aware of how SugarCRM shall process our customers’ personal data and also our internally owned personal data. SugarCRM also ensures awareness and regular training. The legal environment is changing and new laws and regulations are taking effect to control the collection, use, retention, disclosure and disposal of personal information and data in general. At the same time, the rate of cyber attacks, data breaches and unauthorised use of data is growing. Therefore, it is more important than ever to understand the rights and obligations of individuals and organisations with respect to personal information and customer data. On this basis, all employees in SugarCRM are subject to privacy awareness training, not only upon the start of their employment with Sugar but also on a regular basis thereafter.

If you want to learn more about how SugarCRM`s privacy practices as they apply to Personal Information we collect, use and share please see our Privacy Policy.

If you want to learn more about International Data Transfers please contact us.

Sugar uses sub-processors in connection with providing its services. You can find the complete and most up-to-date list of our sub-processors here.