Managing users under GDPR

There are additional data protection rights under the General Data Protection Regulation (GDPR) standard. The Ivanti Neurons for Mobile Threat Defense GDPR profile protects member data from being exposed to integration partners, API developers and administrators.

Enabling the GDPR profile

Before you can assign the GDPR profile to a user, you must enable the feature in Ivanti Neurons for MDM, and select which fields should be visible, and which should not.

Procedure 

  1. From Ivanti Neurons for MDM, navigate to Admin > System > GDPR Profiles. The GDPR Profile page displays.

  2. Select Enable GDPR Profiles to be assigned to users. The Default GDPR Profile options display.

    By default, all of the fields are selected.

  3. Select the blue pencil in the upper-right corner to edit the profile defaults.

  4. Disable GDPR for any fields that you do not want to hide by deselecting the check box for the field.

    Field options include:

    • User ID
    • User's Name
    • Email Address
    • Phone Number
    • International Mobile Equipment Identity (IMEI)
    • Serial Number
    • Integrated Circuit Card ID (ICCID)
    • International Mobile Subscriber Identity (IMSI)
    • Mobile Equipment Identity (MEID)
    • IP Address
    • eSIM Identifier

    When hidden, the serial number and IMEI display as empty fields, the rest display as asterisks: *****

  5. Select Save.

    Your GDPR profile elections display, similar to this example.

    Figure 1. GDPR Profile elections

Assigning the API user to the GDPR profile

Once the GDPR profile is enabled, you must assign it to the API user you created earlier.

When the GDPR profile is enabled for a user, some functionality and edit rights in the Ivanti Neurons for MDM Devices and Users pages are restricted. GDPR-enabled users will see an orange banner across the top of Ivanti Neurons for MDM, reminding them that these restrictions are in place.

Figure 2. GDPR reminder banner

Procedure 

  1. From the Ivanti Neurons for MDM portal, navigate to Users > Users. The Users page displays.
  2. Select an API user, select the three-dot menu for the row, then select Details. The User Information page displays.
  3. Select Edit.

  4. Scroll down to the GDPR Profile section. Select Use the GDPR Profile for this user.

    Figure 3. Use the GDPR Profile for this user enabled

    Screen shot displaying Use the GDPR Profile for this user enabled

  5. Select Save.

    GDPR ProfileDefault GDPR Profile Applied now appears on the user's Edit User Details page, under User Settings.

    Figure 4. Confirm that the GDPR profile has been enabled

    Screen shot displaying confirmation that the GDPR profile has been enabled

  6. Once GDPR has been enabled for an administrator or API user, they will not be able to see protected device and user information. The GDPR fields display as asterisks, or a blank field.