Hi Grant,

I am sure you are already familiar with the General Data Protection Regulation (GDPR) that will go into effect May 25, 2018. Even though GDPR is an EU regulation, it will impact any business that offers goods or services to, or monitors the behavior of, EU individuals — which means that even if you are not based there, you may be impacted. You can find more info on GDPR here: https://www.eugdpr.org/

In an effort to hopefully address any concerns you may have, I wanted to give you details on what Lithium is doing as a data processor to facilitate your compliance with GDPR as data controller, and to let you know where you can go with questions. Many of our customers have already reached out with questions, and we invite you to continue doing so.

Our goal is to make this process as transparent as possible and provide you with the assistance you need to comply with GDPR in your use of the Lithium platform.

Below I have included details on what we are doing with both our products and our internal Lithium business processes. I will provide another update closer to the deadline.


Pete Hess
Lithium Technologies

If you have questions regarding GDPR compliance generally:
Please contact [email protected]. To request more information on implementation options for Lithium JX, please open a ticket through your Lithium portal.

More information about Lithium security can be found at www.lithium.com/security.

What will Lithium JX provide?

  • Out of the box, Lithium JX 2016.3.10 (Cloud) and 9.0.4 (Hosted/On-Prem) will provide features and functions to help you comply with GDPR requirements related to data protection, retention and deletion, and the rights of data subjects.
  • The following items might need further actions from Community Administrators:
    • Cookie/User consent - Administrators would have to turn this on.
    • Right to data erasure - Administrators can perform this from the Administration UI as well as via an API, but customers would need to provide a way for end users to request deletion.
    • Right to data correction - Users will be able to do this for most fields via the UI; administrators can change the other fields that users can't.
    • Right to data retrieval/portability - An API is provided to do data retrieval in JSON, but customers would need to provide a way for end users to request this. End users will be able to retrieve most of this data via the UI.
  • See https://community.jivesoftware.com/docs/DOC-242231 for further details on the planned changes that Aurea is making that will affect both Jive-n and Lithium JX.
  • JX hosted or on prem customers on version 9 will need to do a point upgrade to version 9.0.4 to get the above features.
  • JX customers on earlier versions should reach out to our Support and PS teams about custom options, including add-ons and custom development available through our select network of partners working on GDPR-related solutions.

What we’re doing to comply with GDPR by the deadline:

  • Making significant product enhancements re: rights of data subjects and documentation
  • Conducting data inventories and internal reviews
  • Updating privacy notices
  • Updating contract provisions
  • Updating internal policies, processes, and documentation
  • Conducting ongoing consultations with outside counsel
  • Gathering input from customers
  • Conducting training for Lithium employees
  • Appointing a Data Protection Officer

What is GDPR? (Again, you probably already know this information, but just in case!)
Coming into effect on May 25, 2018, GDPR is a regulation by which the European Parliament intends to strengthen data protection for all individuals in the EU. It seeks to accomplish three things:

  • Consolidate data privacy laws and regulations across the EU
  • Protect the data privacy of EU citizens
  • Future-proof the way organizations approach data privacy

IMPORTANT NOTICE: The content of this communication is provided for informational purposes only and does not constitute legal advice. You should seek advice from your own legal counsel regarding what you need to do to comply with the GDPR.

225 Bush Street, San Francisco, CA 94104

Corporate Head Office: Lithium Technologies, Pier 1, Bay 1A, San Francisco, CA 94111, USA
View our privacy policy.
If you no longer wish to receive marketing emails, click on the following link: Unsubscribe.