Autodesk is committed to be your trusted partner in the privacy field. To assist you in complying with your privacy obligations, Autodesk offers a Data Processing Addendum (DPA), which sets forth Autodesk’s obligations where it is a processor for personal data.
To sign a DPA with Autodesk, simply download the file, sign it, and send it to autodesk.dpa@autodesk.com.
Relevant Autodesk entities are all bound by the same privacy principles. Autodesk has adopted Binding Corporate Rules (BCRs) for controller and processor data transfers. They enable companies to transfer personal data internationally to countries that do not provide an adequate level of protection for personal data as required under the GDPR. Autodesk’s BCRs have been approved by the Irish Data Protection Commission on May 2023, and since then they are annually reviewed and renewed.
You can check the latest version of Autodesk’s BCRs here:
Autodesk has self-certified and is officially part of the Data Privacy Framework (DPF). The EU-US DPF, UK Extension to the EU-US DPF, and Swiss-US DPF were respectively developed by the US Department of Commerce and the European Commission, UK government, and Swiss Federal Administration to provide US organizations with reliable mechanisms for personal data transfers to the United States from the European Union, United Kingdom, and Switzerland while ensuring data protection that is consistent with EU, UK, and Swiss law.
You can verify the status of Autodesk’s Data Privacy Framework certification by searching for Autodesk in the official DPF website.