Capital One (Europe) Plc is based in the UK and we keep our main databases here. However, we do have operations inside and outside the UK and your data may be transferred to, or accessed from, those locations.
Specifically, Capital One has operations in the US, Canada and India.
As well as other Capital One operations, the service providers we share your data with may have operations in the UK and elsewhere in the world.
While some countries - for example those in the European Economic Area (“EEA”), the Isle of Man, Andorra, Argentina, Guernsey, Isle of Man, Israel, Jersey, New Zealand, Switzerland and Uruguay are recognised as having must have the same high standard of data protection as offered here in the UK, other parts of the world may not guarantee that same level of protection. When we share your data with anyone outside of the UK, where necessary, we always put in place the safeguards required by law to ensure that a consistent high level of protection travels with your data.
If you want to learn more about the specific legal safeguards we use to transfer your data, see below.
Capital One (Europe) Plc is based in the UK and we keep our main databases here. However, we do have operations inside and outside the UK and your data may be transferred to, or accessed from, those locations.
Specifically, Capital One has operations in the US, Canada and India.
As well as other Capital One operations, the service providers we share your data with may have operations in the UK and elsewhere in the world.
While some countries - for example those in the European Economic Area (“EEA”), the Isle of Man, Andorra, Argentina, Guernsey, Isle of Man, Israel, Jersey, New Zealand, Switzerland and Uruguay are recognised as having must have the same high standard of data protection as offered here in the UK, other parts of the world may not guarantee that same level of protection. When we share your data with anyone outside of the UK, where necessary, we always put in place the safeguards required by law to ensure that a consistent high level of protection travels with your data.
If you want to learn more about the specific legal safeguards we use to transfer your data, see below.
Before we share your data outside the UK, we must make sure there are safeguards in place which provide adequate protections of your data. Where adequate safeguards are established, your rights as a data subject continue to be protected even after your data has been transferred outside the UK.
We are able to share your data with other parties outside the UK because adequate protection is in place. This usually takes the form of a contract with the recipient which contains data protection terms which have been approved by the European Commission and provide a level of protection that is substantially equivalent to the protection given to your data in the UK. These are known as "Standard Contractual Clauses".
We transfer some of your personal data to our US parent. The United States is a third country under data protection legislation and as such we need to have adequate safeguards in place to ensure that your data is transferred with an adequate level of protection. We have a contract in place with our US parent which sets out terms upon which they can process your data. This includes the "Standard Contractual Clauses" referred to above.
If you would like more specific details about the safeguards in place when transferring your data outside the UK, please email DataProtection@capitalone.com.