This documentation supports the 22.1 version of BMC Helix Digital Workplace Basic and BMC Helix Digital Workplace Advanced. Icons distinguish capabilities available only for the Advanced and External license levels. For more information, see License-types-and-features.

Data privacy, the GDPR, and the Digital Workplace technology

The BMC Helix Digital Workplace solution provides capabilities that help administrators address the personal data protection and privacy requirements associated with the General Data Protection Regulation (GDPR). The GDPR is a set of rules and principles governing the handling of personal data of individuals located in the European Union (EU).

Important

This BMC document provides general information about the GDPR and its key requirements. It is not intended to provide any legal advice. The GDPR can be found at https://ec.europa.eu/info/law/law-topic/data-protection_en. Under this new regulation, any organization handling personal data of European Union residents, regardless of its location, needs to understand which GDPR requirements apply to its organization and accordingly devise a plan for adjusting its systems and processes and for educating its people. Although BMC is not in the business of data privacy compliance software, some of the features of the BMC Helix Digital Workplace solution can help customers meet some requirements of the GDPR. For more information about how BMC solutions can help achieve the requirements of the GDPR, see https://www.bmc.com/legal/gdpr.html

Related topics

Official EC website: General Data Protection Regulation
BMC and GDPR compliance

The GDPR is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy, and to reshape the way organizations approach data privacy. 

Personal data in BMC Helix Digital Workplace

According to the GDPR, personal data includes any information that can identify an individual directly or indirectly. For example, the following data can be considered personal data: name, phone number, email address, IP address, government ID number, and credit card numbers. The personal data comes from the user directly or from a database, or is imported from other external sources. 

For the purpose of sending different types of notifications to users, BMC Helix Digital Workplace stores the following data:

  • User ID
  • Full name
  • Work email, personal email
  • Address, city, country, zip
  • Home location ID, home asset ID
  • Phone number

The data is stored in the databases for an unlimited time period (until the data is deleted, modified, or anonymized). The data is also stored in log files for a time period that an administrator individually configures.


To handle data privacy requests in BMC Helix Digital Workplace

When an individual logs a data privacy request, the Data Protection Officer or Remedy Administrator needs to act on the request by searching, extracting, or anonymizing the personal data connected to that individual. You can perform these actions by using the AR System Personal Data Privacy (PDP) utility. To learn how to use this utility, see Addressing data privacy requests

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*