GSuite: Rollout of Data Processing Amendment version 2.0 to reflect the GDPR
Posted by Carlos R on 11 October 2017 06:03 PM
We are sending you this message because your organization is operating G Suite account yourdomain.com, and the G Suite Data Processing Amendment currently governs how we process personal data on behalf of your organization, and/or according to our records, your organization is established in the European Economic Area or Switzerland.
On May 25, 2018, the most significant piece of European data protection legislation in 20 years will come into force when the European Union's (EU) General Data Protection Regulation (GDPR) replaces the 1995 Data Protection Directive. We know that preparing for this regulatory change is a priority for many of our customers. It is a priority for us, too.
Today, we are pleased to roll out version 2.0 of our Data Processing Amendment (DPA), which has been specifically updated to reflect the GDPR.
How opting in to DPA version 2.0 works
If you opt in to DPA version 2.0, the updated terms will take effect with the GDPR on May 25, 2018. If you opt in before May 25, you will benefit from DPA version 1.6 until then.
Details Google is required to obtain from you
The GDPR requires Google to maintain records of certain information, including the contact details of your EU representative (if your organization is not established in the EU) and Data Protection Officer (DPO), where applicable.
What you need to do
Where to find information or direct questions
Further information regarding Google Cloud and the GDPR is available on our Cloud GDPR website. If you're also a Google Cloud Platform (GCP) customer, you will receive a separate communication concerning the rollout of updated terms for the relevant GCP products to reflect the GDPR. You might also receive similar communications concerning any other Google products you are using.
If you have any questions, sign in to the Admin console and contact Google's Cloud Data Protection Team.
The G Suite Team
Why are you rolling out DPA version 2.0 now? Why aren't you waiting until May 25, 2018?
Google is committed to GDPR compliance and to helping its customers with their own compliance journey. We are rolling out DPA version 2.0 well in advance to facilitate your compliance assessment and GDPR readiness when using G Suite services.
DPA version 2.0 takes effect on May 25, 2018, but what happens in the meantime?
DPA version 1.6 will apply in the meantime.
My company already opted in to an earlier version of the DPA. Do we need to opt in again to benefit from the new terms?
Yes. Earlier versions of the DPA don't mention the GDPR. DPA version 2.0 specifically addresses GDPR changes. For more information about the GDPR and how you should begin preparing for it, see the Cloud GDPR website. You can opt in to version 2.0 in the Google Admin console (see directions above).
My company already opted in to G Suite Model Contract Clauses (MCCs). Will those remain in force if we opt in to DPA version 2.0?
Yes. If you previously opted in to G Suite MCCs, they'll remain in force whether or not you opt in to DPA version 2.0.
What is a data controller? What is a data processor?
A data controller determines the purposes and means of processing of personal data. A data processor processes personal data on behalf of a data controller. G Suite customers will typically act as the data controller for any personal data they provide to Google in connection with their use of G Suite. Google is a data processor and processes personal data on behalf of the data controller when the data controller is using G Suite.
What are my obligations as a customer and data controller?
Data controllers are responsible for implementing appropriate technical and organizational measures to ensure and demonstrate that any data processing is performed in compliance with the GDPR. Controllers' obligations relate to principles such as lawfulness, fairness and transparency, purpose limitation, data minimisation, and accuracy, as well as fulfilling data subjects' rights with respect to their data. You can find guidance related to your responsibilities under the GDPR by regularly checking the website of your national or lead data-protection authority under the GDPR (as applicable), as well as by reviewing publications by data-privacy associations, such as the International Association of Privacy Professionals (IAPP). You should also seek independent legal advice relating to your status and obligations under the GDPR, as only a lawyer can provide you with legal advice specifically tailored to your situation.
What is a Data Protection Officer or DPO?
A Data Protection Officer (DPO) is the person designated, where applicable, to facilitate compliance with the provisions of the GDPR. The GDPR defines the criteria and the conditions under which a DPO must be designated.
What is a Customer EU Representative?
A Customer EU Representative is the person designated, where applicable, to represent customers not established in the EU with regard to their obligations under the GDPR.
© 2017 Google LLC. 1600 Amphitheatre Parkway, Mountain View, CA 94043
You have received this important update about your G Suite account because you designated this email address as a primary or secondary contact for mandatory service communications in your Google Admin console profile.
Read more »
ProofPoint: Immediate action required to avoid possible email delivery
Posted by Carlos R on 01 September 2017 05:26 PM
Action: Orgs with Inbound Firewall and/or MailServer Rules
***Immediate Action Required****
Read more »
Attn MxForce / Postlayer clients: Avoid Email Interruption
Posted by Carlos R on 17 August 2017 01:30 AM
Your MX Force account has been provisioned in the FuseMail console
ACTION REQUIRED: Avoid Email Interruption
Your MX Force account has been upgraded to FuseMail.
If you have not proceeded with the upgrade preparation instructions we provided previously, you must do so immediately to avoid email interruption / downtime. Pay particular attention to Step 2: Firewall
Steps to Prepare Your Email Server (PDF)
FuseMail Guides & Collateral (PDF)
Creating Administrators & Custom Roles (PDF)
FuseMail Complete Console Walk-Through (Video)
FuseMail Administrator Experience (Video)
FuseMail End User Experience (Video)
FuseMail Best Practices
Join Excel Micro on our weekly webinar every Friday comparing your new solution to MX Force and showing you the best practices.
Read more »
Ransomware event - Petya: 06.27.17
Posted by Sue Gildea on 27 June 2017 04:04 PM
Please be aware of a new ransomware event, currently affecting the Ukraine and parts of Europe.
Initial reports indicate Petya is using similar exploits as Wannacry.
Best practices recommended include:
1) Ensuring your Windows machines have the latest updates
2) Avoid clicking any suspicious links or opening any suspicious files
As additional information becomes available, we will update this post.
Excel Micro Support
Read more »
Zimbra: Certificate error and instructions to correct 04/10/2017
Posted by Sue Gildea on 10 April 2017 09:53 AM
Xmission/Zimbra SSL Cert Alert:
Excel Micro is currently aware of an SSL Cert failure when trying to connect to https://flexbox.mxtoolbox.com/
We ask you to please change your Inbound AND Outbound server information on your mail client (Outlook, Thunderbird, Mac Mail) from flexbox.mxtoolbox.com to zimbra.xmission.com directly. This workaround will help resolve your email issues.
Please see screen shots below to help further in changing your inbound server.
XMission Recommends an IMAP email configuration.
- Please note that some free wireless hotspots may block SSL without an extra fee. If you cannot send or receive while on certain wifi networks (especially ones in airports or public spaces) please check their terms and conditions and ensure they are not blocking SSL connections.
Read more »