Managing EU users under GDPR

European Union (EU) members have additional data protection rights under the General Data Protection Regulation (GDPR) standard. The Ivanti Mobile Threat Defense GDPR profile protects member data from being exposed to integration partners, API developers and administrators. AW-37004

• Enabling the GDPR profile
• Assigning users to a GDPR profile

Enabling the GDPR profile

Before you can assign the GDPR profile to a user, you must enable the feature in Ivanti EPMM, and select which fields should be visible, and which should not. VSP-58770

For CORE:

1. From the Ivanti EPMM Admin Portal, navigate to Settings > Users & Devices > GDPR profile.
2. Click GDPR Profile. The GDPR Profile page displays.

3. Click Enable GDPR Profiles to be assigned to users. The Default GDPR Profile options display.

   By default, all of the fields are selected.

4. Click the blue pencil in the upper-right corner to edit the profile defaults.

5. Disable GDPR for any fields that you do not want to hide by deselecting the check box for the field.

   Field options include:

   • User ID
   • Person Name
   • Email address
   • Phone Number
   • International Mobile Equipment Identity (IMEI)
   • Serial Number
   • Integrated Circuit Card ID (ICCID)
   • International Mobile Subscriber Identity (IMSI)
   • Mobile Equipment Identifier (MEID)

   • IP Address

   • SIM EID

   When hidden, the serial number and IMEI display as empty fields, the rest as asterisks: *****

6. Click Save.

   Your GDPR profile elections display. In this example, the User ID will display in clear text, but the other fields will be hidden.

   Figure 1. GDPR Profile elections

   

For Ivanti EPMM:

Assigning users to a GDPR profile

Once the GDPR profile is enabled, you must assign it to the API user you created earlier.

When the GDPR profile is enabled for a user, some functionality and edit rights in the Ivanti EPMM Devices and Users pages are restricted. GDPR-enabled users will see an orange banner across the top of Ivanti EPMM, reminding them that these restrictions are in place. AW-39181

Figure 2. GDPR reminder banner

Procedure 

For CORE:

1. From the Ivanti EPMM Admin Portal, navigate to Devices & Users > Users. The Users page displays.
2. Click the pencil icon next to the API user name to edit the user profile. The Edit User dialog box opens.

3. Click Enable GDPR to assign a user to the GDPR profile.

   Figure 3. enable GDPR checked for GDPR user

   

4. Click Save.

   The Users page now displays Yes in the GDPR Profile Enabled column for users you have enabled.

For Ivanti EPMM: