OVATION GDPR Compliant Reporting

by OVATION

Manage wireless usage & expenses

 Write a review
Contact Us

Personal Data

Personal data is defined as any information which is related to an identified or identifiable natural person and can include but not limited to:

  • Names
  • Identification numbers
  • Call detail records
  • Phone numbers
  • Email addresses
  • IP addresses
  • Geo data tracking
  • Location data and other factors
  • Specifically, with regards to the collection of wireless carrier data for employees’ mobile phone and data usage, OVATION process this data for the sole purpose of internal client reporting.

Our Tool

In our tool, four specific measures have been implemented for GDPR compliancy, in addition to the security and data privacy measures already available.

  • Pseudonymizing call detail records - After a certain number of periods, Call Detail Records can be pseudonymized. The data is still there, and can, with some limitations, be used for analysis, but it is no longer possible to link the data to people. In that way, it has ceased to be Personal Identifiable Data. The number of periods after which pseudonymization is done can be set per account.
  • Ability to implement “right to be forgotten” for leaving employees - This functionality makes it possible to remove all references to employees that are no longer with the company.
  • Anonymize logbooks - All logbooks are anonymized after six months.
  • Reduce retention period for ad-hoc reports and electronic invoices - Retention period for generated reports and electronic invoices is set to three months.