Genesys Multicloud privacy policy

This Privacy Policy outlines Genesys practices for collecting, using, maintaining, protecting and disclosing Customer Data, including Personal Data, through Genesys Multicloud, and what Genesys does with that information. Additionally, this Privacy Policy describes the privacy principles followed by Genesys Cloud Services, Inc. (“Genesys”) with respect to international transfers of Personal Data (defined below). If you have questions about this Privacy Policy, or how Genesys respects your information, contact DataPrivacy@genesys.com. For the purposes of this Privacy Policy, “Customer Data” means the Genesys customer’s proprietary information and information about its customers (including Personal Data) submitted through Genesys Multicloud by the customer and its agents. Customer Data does not include aggregate data and information related to the performance, operation and use of the Multicloud Services. “Personal Data” means any information relating to individuals that is protected by applicable privacy law.

In general, Genesys Multicloud manages consumer engagements via various media channels. Genesys Multicloud processes information related to the consumer engagements (audio call recordings, call metadata, chat messages, etc.). Additionally, a customer may choose to provide information to Genesys Multicloud, such as through importing information from third party websites, uploading files, screensharing, video or audio calls, or chat messages.

Genesys will only collect Customer Data when it is voluntarily made available to Genesys by a customer.

Genesys will use this information to provide Genesys Multicloud services. If recording is enabled, Genesys will collect and store interaction recordings. Genesys also uses some Personal Data to route calls or webchats and maintain records of these interactions.

Genesys will also use this information to comply with Customer requests. For example, if a customer requests technical support assistance, Genesys will use data to help troubleshoot the issue (location, call data, customer agent data, etc.). If a customer is interested in signing up for a Genesys webinar, the Customer Data provided will enable Genesys to tailor the webinar more closely to specific needs. In addition, Genesys may refer to Customer Data to better understand customer needs and how Genesys can improve its products and services. Genesys may use that information to contact customers.

Genesys does transfer Customer Data outside the country where customers are located in order to carry out the Services and other obligations under the Agreement.

Genesys has developed and maintains a privacy program designed to respect and protect Customer Data under its control. Genesys will not rent or sell any Customer Data.

Genesys may aggregate data and information related to the performance, operation and use of the Multicloud Services to create statistical analyses, to perform benchmarking, to perform research and development, and to perform other similar activities (“Service Improvements”). Genesys will not incorporate Customer Data in Service Improvements in a form that could identify customers or their consumers, and Genesys will use industry standard techniques to anonymize Customer Data prior to performing Service Improvements.

The customer can limit the amount of data that is processed by Genesys by limiting the collection of data through the Genesys Multicloud service. For example, if the customer does not wish to collect government identification numbers, agents should be trained to not ask for those numbers or use a secure-pause feature to prevent that information from being recorded.

Some Personal Data is considered Sensitive Personal Data, such as any Personal Data that reveals race, ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, information that concerns health or sex life, and information about criminal or administrative proceedings and sanctions. Genesys will not disclose Sensitive Personal Data to a third party that is not authorized or use Sensitive Personal Data for a purpose other than the purpose for which it was originally collected, unless Genesys has received affirmative and explicit consent to do so (opt-in).

For additional information regarding how customers may restrict the use of Personal Data please contact Genesys at DataPrivacy@genesys.com.

Genesys Multicloud uses third-party data processors around the world to provide certain services, such as a cloud storage, security monitoring, and troubleshooting. These third-party data processors may process Personal Data provided by Genesys, on its behalf and under its instruction. Genesys ensures that it obtains assurances from these third parties to safeguard Personal Data in accordance with this Privacy Policy.

Such assurances include:

• Requiring third parties to provide at least the same level of protection as is required under this Privacy Policy;
• The use of Standard Contractual Clauses as a basis for transfers of data from the European Union to non-adequate countries;
• Requiring the third party to comply with data protection regulations, such as EU General Data Protection Regulation (GDPR), or other applicable laws.

Genesys Multicloud has a standard JSON format for both Right of Erasure (Forget Me) and Right of Access and Portability (Export). More information on these tools can be found in Genesys Multicloud CX support for GDPR.

If there are any questions or issues, please reach out to customer care. An individual that has further questions, or would like to make a request directly, can contact Genesys at DataPrivacy@genesys.com.

Genesys is committed to protecting the Personal Data. Genesys have implemented appropriate physical, electronic and administrative procedures to safeguard and secure this information from loss, misuse, unauthorized access or disclosure, alteration and destruction.

Genesys Multicloud is certified to several information security standards. Details of the standards can be found here.

The Genesys Multicloud services are not intended or designed to attract children under the age of 13. Genesys does not collect personally identifiable data from any person it knows to be under the age of 13.

Genesys conducts compliance audits of its privacy practices to verify compliance with this Privacy Policy. Any Genesys employee that is determined to have acted in violation of this Privacy Policy will be subject to disciplinary action up to and including termination of employment.

Any questions or concerns regarding Genesys’ use or disclosure of Personal Data should be addressed to DataPrivacy@genesys.com. Genesys will investigate and attempt to resolve any complaints and disputes regarding the use and disclosure of Personal Data in accordance with the provisions of this Privacy Policy.

Genesys uses Standard Contractual Clauses (“SCCs”) as a basis for personal data transfers from the EU to non-adequate countries. Genesys entities in the EU sign SCCs with Genesys entities outside the EU in non-adequate countries, and Genesys signs SCCs with third-party vendors outside the EU. Genesys understand that controllers are required to perform a transfer assessment in some instances when using SCCs. To that end, Genesys has prepared a transfer impact assessment for the Genesys Multicloud service. Customers may contact Genesys if they wish to receive a copy.

Any changes made to this Privacy Policy will be posted on this page. The date the Privacy Policy was last revised is identified at the bottom of the page. If Genesys make material changes to how Genesys treats Personal Data that falls within the scope of this Privacy Policy, Genesys will notify customers by email, as specified in the customer records, or through a notice in the Genesys Multicloud services.

The customer is responsible for ensuring Genesys has an up-to-date, active and deliverable email address, and for periodically visiting the Privacy Policy to check for any changes.

Genesys encourages customers to inform Genesys of any complaints or disputes they may have regarding the use of Personal Data. Genesys will investigate the matter and attempt to resolve the issue quickly.

Please contact Genesys at DataPrivacy@genesys.com with any questions or concerns about this Privacy Policy or the use of Customer Data.