GDPR and European clients

Mads_Jorgensen · March 22, 2021, 5:12am

Figma is based in the US and they are legally basing the transfer of personal information from the EU to the US on the now defunct “Privacy Shield”.

Neither their Terms of Service nor their privacy policy refer to the still “valid” Standard Contractual Clauses – which are used by the likes of HubSpot, Google etc., but which are by 100% legal definition are also considered to be invalidated by the EU court privacy shield as we as a company would need to check and ensure that equally appropriate protection of the data is possible in the US. This is not possible based on PATRIOT and CLOUD acts.

Can anyone from Europe state how you are dealing with this matter? Closing your eyes and hoping employees won’t sue you (which really is VERY unlikely) or do you have legal departments accepting these terms and conditions?

I am in the situation where I am not allowed to start using Figma - as the terms and conditions doesn’t make us able to for GDPR and legal reasons. So is a bunch of our sister companies.

Jess4 · July 28, 2021, 7:53pm

We are having the same issues and are planning to openly communicate with our clients. We are also thinking of writing up a document that clients have to sign so we are not liable anymore. But we are still researching. I wonder if Figma is planning to create and use European servers. That would make it a lot easier regarding compliance.

Martine_Hinrichs · March 10, 2022, 3:09pm

I’ve got the same question. Does have Figma any plans on start using servers in Europe? I am not able to use Figma now.

S_e_b_a_s_t_i_a_n · April 5, 2022, 7:45pm

Our company is located in Germany. Our legal department is always alert to services from the United States. At the moment they are checking whether we can use Figma in the future or not. On the other hand, there are no other alternatives.

S_e_b_a_s_t_i_a_n · May 20, 2022, 7:03am

Legal check is done. Figma is safe to use (for us)

Torsten_Daeges · May 29, 2022, 5:44pm

Not for us, sadly. Our company can not accept tools with data being transferred to US servers. Which means that we’ll have to work wih Adobe XD… (not fun).

Torsten_Daeges · May 29, 2022, 5:50pm

I do wonder why the Figma team never cared to reply to this thread for over a year… That kind of support ethic does not inspire confidence for what the support would be if be could actually adopt Figma. Maybe those newer alternative tools are worth a look after all.

Martin_Sotzen1 · June 23, 2022, 12:45pm

I have the same problem (company in germany). How did you managed that?

Torsten_Daeges1 · July 12, 2022, 12:12pm

We haven’t. We’re in the process of abandoning Figma for XD, sadly - but obviously nobody cares at Figma, so we’re out of options.

ksn · August 1, 2022, 3:17pm

Hey everyone - first, our apologies that we didn’t seem to catch this thread until now.

For surface-level information, we have this article available with information on GDPR policy and compliance: https://help.figma.com/hc/en-us/articles/360041060434-General-Data-Protection-Regulations-GDPR-

For specific information with regard to your individual situation: please reach out to your Figma Sales rep with all legal questions. We can share our Privacy FAQs and our Data Processing Agreement that cover these topics in further detail.

I will be closing this topic and marking this answer as the solution for visibility. Feel free to create a new topic, or reach out to support@figma.com with any other questions that come up.