GDPR Compliance Guide for RingCentral Services

This guide provides essential information regarding GDPR compliance as it pertains to RingCentral's services. It outlines the company's commitment to processing customer personal data in accordance with applicable data protection laws, specifically the General Data Protection Regulation (GDPR). The document details the structure of RingCentral's Privacy and Data Protection Program, which includes accountability measures, transparency initiatives, and data minimization principles. It describes the categories of personal data processed, including account information, customer-generated content, and usage data. Furthermore, the guide addresses data storage practices in Europe, the Data Processing Addendum offered to customers, and the role of subprocessors in service delivery. It also discusses data transfers outside the EEA, UK, and Switzerland, emphasizing compliance with GDPR during such transfers. The guide concludes with information on security measures, data subject rights, and the appointment of an external Data Protection Officer, ensuring a comprehensive understanding of RingCentral's privacy practices.