General Data Protection Regulation (GDPR) support

The General Data Protection Regulation (GDPR) has been adopted by the European Union 28 Member States (“EU”). GDPR establishes a stronger data protection regulatory framework for processing of personal data of individuals, impacts IBM and IBM's client contracts, policies and procedures when handling personal data.

GDPR brings:

New and enhanced rights for individuals
Widened definition of personal data
New obligations for processors
Potential significant financial penalties for non-compliance
Compulsory data breach notification

IBM Partner Engagement Manager provides the mechanism to archive or delete personal data of sponsors, partners, sponsor users and partner users by using the Purge tool. The Sponsor Administrator can run the Purge tool to archive or delete personal data.

Data can be archived or deleted from IBM PEM based on the set strategy and scope. For more information about purging data, see Deploy the Purge tool.

IBM PEM maintains an audit history for personal data access.

IBM PEM does not log personal data in to the log files.

Learn more about IBM's own GDPR readiness journey and our GDPR capabilities and offerings here: https://ibm.com/gdpr

Notice: Clients are responsible for ensuring their own compliance with various laws and regulations, including the European Union General Data Protection Regulation. Clients are solely responsible for obtaining advice of competent legal counsel as to the identification and interpretation of any relevant laws and regulations that may affect the clients’ business and any actions the clients may need to take to comply with such laws and regulations.

The products, services, and other capabilities described herein are not suitable for all client situations and may have restricted availability. IBM does not provide legal, accounting or auditing advice or represent or warrant that its services or products will ensure that clients are in compliance with any law or regulation.