Turnitin Announces Updates to Privacy Center, SOC 2 Certification Ahead of the GDPR

Turnitin—already using GDPR-approved practices—is dedicated to protecting privacy and data integrity for individuals and for educational institutions

OAKLAND, Calif; NEWCASTLE, UK; UTRECHT, The Netherlands - Turnitin, a company at the forefront of academic integrity solutions for 20 years, announced today its commitment to stringent data privacy practices and compliance with the European Union’s (EU) General Data Privacy Regulation (GDPR). The GDPR represents the most comprehensive shake-up of data protection law in the EU in over 20 years; it sets exacting conditions on the use, process, and export of personal data.

Turnitin technology and data privacy practices are continuously held to rigorous standards. Although Turnitin technology was already in compliance with the GDPR, the company dedicated additional resources to further evaluate and update systems and processes in light of the new regulations. Specific steps taken include an improved Privacy Center and amendments to the Turnitin Terms of Service, which is incorporated into customer Registration Agreements. The new Terms of Service includes mandatory GDPR provisions so that customers—who must also be GDPR compliant—will not need to take additional actions with their agreements. To transfer data, Turnitin already used the GDPR-approved safeguards, such as the EU Model Clauses and the EU-US or Swiss-US Privacy Shield, for which Turnitin is fully certified.

Demonstrating a further commitment to privacy and security, Turnitin is also undergoing a SOC 2 (Service Organization Control) Type 1 and Type 2 audit with an independent CPA firm. With an additional emphasis on privacy, Turnitin’s SOC 2 report will detail the controls of the systems used to process data and describe the security and privacy of that data. Having successfully completed the SOC 2 Type 1 audit, Turnitin is now into their SOC 2 Type 2 audit period, targeted for completion in Q4 2018.  Turnitin’s GDPR compliant technical and organizational measures, in conjunction with the SOC 2 audit, demonstrate its focus on high quality standards around data privacy.

“Data protection requires continuous vigilance and management to not only meet obligations like the GDPR, but also to forecast future needs as the typical individual’s digital footprint grows,” said Giles Kerrush, International Commercial & Legal Manager and Data Protection Officer at Turnitin. “Turnitin is dedicated to protecting privacy and data integrity for individuals and for the educational institutions who entrust us with helping support academic integrity and authentic writing.”

“At Turnitin, we believe that data security is essential to our commitment to academic integrity,” said Jack Roehrig, Turnitin Chief Information Security Officer. “The SOC certification is the beginning of a greater initiative to assess and continuously secure our platform and the sensitive data therein. To confirm we are taking privacy in the correct direction, we included the privacy criteria in our SOC audit.”

Read more at https://go.turnitin.com/turnitin-and-gdpr.

About Turnitin

Turnitin is your partner in education with integrity. Turnitin’s originality checking and authorship investigation services ensure academic integrity, promote critical thinking, and help students improve their authentic writing. Turnitin provides instructors with the tools to prevent plagiarism, engage students in the writing process, and provide personalized feedback. Turnitin is used by more than 30 million students at 15,000 institutions in 140 countries. Backed by Insight Venture Partners, GIC, Norwest Venture Partners, Lead Edge Capital and Georgian Partners, Turnitin is headquartered in Oakland, Calif., with international offices in Newcastle, U.K., Utrecht, Netherlands, Melbourne, Australia, Seoul, Korea and throughout Latin America. @Turnitin


Media Contacts:
Giles Kerrush, Data Protection Officer, DPO@turnitin.com
Amanda Zeligs Hand for Turnitin, azeligshand@turnitin.com or +1-510-764-7600 *1018
Jennifer Harrison for Turnitin, jennifer@jharrisonpr.com or +1-916-716-0636

Summary: Turnitin updates privacy center and SOC 2 certification in compliance with European Union GDPR
Tweet:Turnitin updates privacy center and SOC 2 certification in compliance with European Union GDPR https://go.turnitin.com/turnitin-and-gdpr
Tags: Turnitin, GDPR, privacy center, education, SOC 2



Jennifer Harrison

for Turnitin, J Harrison Public Relations Group

Get updates in your mailbox

By clicking "Subscribe" I confirm I have read and agree to the Privacy Policy.

About J Harrison Public Relations Group

Pando Public Relations, formerly J Harrison Public Relations Group, shares stories and news from schools and companies in K-12 and Higher Education. Contact us for access to educators, for background information, or to speak with executives from companies doing business in education.

This newsroom sunsetted in January 2019. Find our new newsroom at Press.PandoPublicRelations.com