General Data Protection Regulation (GDPR)

This page is specifically about the General Data Protection Regulation (GDPR). For more general privacy information, see our privacy policy.

Introduction

Our team continues to improve our products and processes to ensure Riva customers experience the highest privacy and security standards.

GDPR is an EU regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. Companies need to comply with strict new rules around protecting customer data by May 25th, 2018. Riva is well prepared to help our customers meet these data privacy requirements.

How Riva is preparing for the GDPR

Security and customer data privacy are top priorities at Riva. We are fully prepared for, and are following the EU’s transition to GDPR.  We have completed important strides in the area of data protection, many of which are directly applicable to GDPR.

Riva will be GDPR compliant by the May 25th, 2018 enforcement date.

Customers that require Data Processing Agreements, Amendments, or Data Protection Addendums should contact emea@rivacrmintegration.com to complete this process.

We are here to help

We are able to provide further information about categories of data, assistance in facilitating deletion of data subjects, and reviewing the impact of such deletions on our ability to keep our customers informed. We have introduced features into applications published by Riva to help you meet GDPR requirements.

We value our customers and take all reasonable steps to protect their privacy. We follow up-to-date industry standards in securing infrastructure and how security relates to application code.

If a data breach does occur, Riva is ready to respond in accordance with GDPR.

Riva will respond in accordance with rights granted by GDPR when we receive a request to provide or delete a data subject’s Personally Identifiable Information (PII).

To submit a GDPR Data Privacy Request, find details here: Managing my Personal Data Privacy with GDPR.

Personal Data: Billing, rivacloud.com, rivacrmintegration.com, and GDPR

Riva stores personal data for customers who are working through a trial or a production licence engagement.  Licensing and related information is collected and stored on infrastructure and SaaS applications managed by Riva. These applications include third-party billing and credit card processors.

“Subscriber Data” is comprised of information including:

  1. Company details;
  2. Contacts (name, business email, business phone, social media profiles); and,
  3. Device IP Addresses.

The following are third-party entities, defined as “Sub-Processors”, with whom we store a subset of the “Subscriber Data”:

Entity Name Purpose Available Services Entity Location
BlueSnap, Inc. BlueSnap provides e-commerce solutions and processes credit card payments for transactions in Euros.

View BlueSnap’s GDPR compliance commitment »

Credit Card Processing (€ EUR) United Kingdom
Google Analytics Google Analytics provides website tracking services for marketing and sales activities. Google Analytics information may contain Subscriber Data.

View Google Analytics’ GDPR compliance commitment »

Globally used United States
Marketo, Inc. Marketo provides email and website campaign and website lead tracking services for marketing and sales activities. Marketo campaign, lead data and website tracking contain Subscriber Data.

View Marketo’s GDPR compliance commitment »

Globally used United States
Microsoft Corporation Microsoft Office 365 offers a highly available enterprise grade business productivity and communication platform. Riva uses Office 365 for services including email communication and document storage services.

View Microsoft’s GDPR compliance commitment »

Globally used United States
Moneris Solutions Corporation Moneris provides e-commerce solutions and processes credit card payments for Canadian and U.S. dollar transactions.

View Moneris Solutions’ GDPR compliance commitment »

Credit Card Processing ($ CAD, $ USD) Canada
RingCentral, Inc. RingCentral is a leading provider of telephony and meeting services. All Riva employees and some subcontractors have access to Ring Central to receive and make telephone calls. RingCentral stores all call history, logs, recordings including Subscriber Data.

View RingCentral’s GDPR compliance commitment »

Globally used United States
Zendesk, Inc. Zendesk provides customer services software used by Riva for customer facing technical support needs. When a support request is created, Subscriber Data is stored in Zendesk Services providing a unique and per authenticated Subscriber view of current and previous support requests. All communication sent to/from (including attachments) are stored in Zendesk Services.

View Zendesk’s GDPR compliance commitment »

Technical support used by Riva United States
Zuora, Inc. Zuora provides billing, accounting and financial operations services including credit card data collection and submission for credit card processing.

View Zuora’s GDPR compliance commitment »

Riva Billing United States

If you have questions or require additional information relating to GDPR, please contact us at privacy@rivacrmintegration.com:

Back to Top