Adobe Transparency Center

Government and Third-Party Requests for User Data

 

Our Principles

Adobe may, on occasion, receive a request from a government authority seeking access to data belonging to a user or enterprise customer. Adobe may also receive such requests from parties to civil litigation. Our goal is always to protect our users’ and enterprise customers’ data while complying with applicable laws. The below principles inform Adobe’s approach to these requests and apply to all user data hosted by Adobe.

  • Validity. Adobe’s Trust & Safety team reviews each request for user and enterprise customer information to ensure they are valid and rejects those that do not appear to be valid.
  • Specificity and Proportionality. We only accept requests that target specific accounts and identifiers, and provide only the information specified.
  • Enterprise Customer Control. We believe our enterprise customers have control over their data. If we receive a request for enterprise customer data, we will ask the requesting entity to re-direct their request to the affected customer so the customer can engage with the entity directly.
  • Notice. Unless prohibited by law or under exceptional circumstances (e.g., threats to life), Adobe always notifies a user or an enterprise about valid requests for their information.
  • No Backdoors. Adobe has not built ‘backdoors’ for any government – foreign or domestic – into our products or services. All government requests for user data must come through the front door (i.e., be served by valid legal process upon the appropriate Adobe entity). Adobe vigorously opposes legislation in the U.S. and overseas that would in any way weaken the security of our products or our users’ privacy protections.
  • Transparency. Every year, Adobe publishes a Transparency Report explaining how many requests for user information we received and how we responded.