GDPR Statement for AVEVA Customers
The General Data Protection Regulation
The General Data Protection Regulation (GDPR) came into force on 25 May 2018 and imposed more stringent rules for the use and storage of personal data by companies operating in the EU (being those established in the EU, and also those established outside of the EU, where such companies process EU data subjects’ personal data, in connection with their business) and on its departure from the EU, the UK General Data Protection Regulation brought much of the GDPR rules and principles into UK law in conjunction with the Data Protection Act 2018.
At AVEVA we recognised that these GDPR rules and principles place important responsibilities on us to ensure that we use personal data in a compliant manner in conducting our business.
This statement seeks to inform our customers of the steps that we take to ensure compliance with the GDPR rules.
Customer Personal Data
Use of AVEVA products and services will sometimes necessitate the processing of personal data provided by our customers. This may be, for example, to administer customer accounts or transfer personal data of customer project teams using our products to relevant project managers. Customers may also provide personal data to us directly via our helpdesk or in seeking support for our products.
AVEVA Compliance
AVEVA has a GDPR compliance team and function dedicated to ensuring compliance with the GDPR. Important compliance actions, from our customers’ perspective, include taking the following steps:
- Customer Contracts – we keep our contractual templates up to date to comply with our obligations in processing customer personal data through our products and services including exports of such personal data outside the EU and/or UK.
- AVEVA Privacy Policy – we ensure that our AVEVA Privacy Policy is up to date in inform you about how we use your personal data in our products and services in a compliant manner, your rights in this regard and how to contact us to seek further information. This AVEVA Privacy Policy can be accessed at https://www.aveva.com/en/legal/privacy-policy/.
- Technical and Organisational Safeguards - when using our customer’s personal data we seek to ensure that appropriate security measures are taken to protect use of your personal data through our systems and products.
- GDPR internal policies and staff training – AVEVA personnel are instructed to handle personal data in line with AVEVA’s Group Data Protection Policy (the Policy). Staff training is being provided to ensure compliance with the Policy and AVEVA’s obligations under the GDPR.
Should you have specific queries relating to AVEVA’s compliance with the GDPR please email dataprotection@aveva.com.