UMS' commitment to the GDPR (General Data Protection Regulation)

UMS deals with personal data, either directly or on behalf of our customers. We are dependent on the confidence of our customers and end users so protecting the data of our customers and ensuring the privacy of end users is therefore a core element of our business.

This policy ensures that UMS:

  • Complies with data protection laws in the countries where we operate
  • Protects the rights of staff, partners, customers and citizens
  • Is open about how it stores and processes personal data
  • Protects itself from the risk of a data breach

Here is an overview of our GDPR roadmap

Researched and identified all products and business areas affected by GDPR

Aug 2017
Updated UMS policy on data protection and privacy for GDPR compliancy

Nov 2017
Published privacy statement

Dec 2017
Appointed Data Protection Officer

Nov 2017
Documented all privacy data types (PII) in UMS, including purpose and legal basis

Aug 2017
Established routines for handling requests for access from data subjects

Oct 2017
Implement, test and deploy all necessary changes to UMS products based on GDPR requirements

Feb 2018
Rewritten the standard UMS data processor agreement

Nov 2017
Signed data processor agreements with partners & vendors

Apr 2018
Signed data processor agreements with customers

Apr 2018
Defined control mechanisms for data protection and privacy

Feb 2018
Defined and performed privacy impact assessment (PIA)

Feb 2018
Finalize and communicate full compliance with GDPR

May 2018

Read more about GDPR here.