As you prepare to comply with the GDPR, here is what else you can expect from ServiceNow:

• You maintain control. When you entrust your data to the ServiceNow cloud, you remain the sole owner: you retain the rights, title, and interest in the data you store in our cloud services. You can take advantage of the features inherent in the Now Platform® to meet your GDPR obligations related to deletion, rectification, transfer of, access to, and objection to processing of personal data.
  
  
• You have full visibility. The ServiceNow  cloud protects your data from inappropriate access or use by unauthorized individuals with robust measures, including restricting access by ServiceNow personnel and subcontractors. In addition to these commitments, ServiceNow provides you with the ability to monitor how data is managed and who has access to what data within your organization.
  
  Our world‑class datacenters are certified to internationally recognized security standards, protected by 24‑hour physical surveillance, and continuously monitored using strict access controls. Our single‑tenant architecture keeps your data logically isolated from the data of other customers.
  
  Securing our cloud infrastructure is only part of a comprehensive security strategy. Each cloud service has built‑in security features to help you secure your data, including field‑level encryption, encryption in transit, comprehensive role‑based access control, application scoping, access and transaction logging and monitoring, and support for multi‑factor authentication.
  
  
• We commit to rapid response. ServiceNow has robust security incident response processes and contractually commits to notifying our customers in accordance with the GDPR. With active threat intelligence and advanced machine learning capabilities, our security team does not have to wait for an incident to occur. We use real‑time data to predict issues, and then prioritize and resolve them based on the impact to your data or services.