Resources

All Trust Center files & documents

image GDPR Addendum

Download the Ex Libris GDPR addendum regarding compliance with the General Data Protection Regulation

Download now
Filter by
Topic
Product
RESET

GDPR

Data Processing Addendum

The EU General Data Protection Regulation (GDPR) became applicable on 25 May 2018.

Icon

Policy - Data Center

Ex Libris Data Retention Policy

The purpose of this Policy is to ensure that necessary records and documents are adequately protected and maintained and to ensure that records that are no longer needed by Ex Libris or are of no value are discarded at the proper time.

Icon

Policy - Security

Ex Libris Password Management Policy

The purpose of this policy is to establish a standard for the protection, appropriate use and creation of strong passwords, to protect customer information, and to maintain data privacy by defining the frequency with which passwords should be changed.

Icon

Policy - Security

Ex Libris Service Disruption Communication Policy

This policy defines a consistent way to handle, avoid and communicate any service disruption.

Icon

Policy - Security

Ex Libris Cloud Services Business Continuity Plan (BCP) Overview

The BCP is a plan of actions to be taken in the event of a disaster in order to resume critical operations in a pre-defined time frame.

Icon

Advisories - Security

Meltdown and Spectre vulnerabilities

Updated January 7, 2018 - Ex Libris is aware of the recently reported security vulnerabilities known as 'Meltdown' and 'Spectre' that affect computer processors (CPUs.)

Icon

Policy - Data Center

Welcome to the Ex Libris Cloud

This document provides the benefits of using the Ex Libris Cloud services together with general instructions for new customers joining the Ex Libris Cloud.

Icon

Availability - Data Centers

System down procedure and contact information

Relevant procedures and hub contact information.

Icon

Policy - Data Center

Accesibility

Ex Libris, a ProQuest Company, is committed to providing an experience that is fully accessible to everyone.

Icon

Policy - Data Center

Customer Appropriate Usage Statement

This policy defines the required customer cooperation and appropriate use for Ex Libris customers with access rights to Ex Libris Cloud infrastructures.

Icon

Policy- Data Center

Ex Libris Access Control Policy

This document defines the Ex Libris policy regarding Access Control. It is Ex Libris’ goal to ensure that personnel are positively authenticated and authorized prior to being granted access to information resources.

Icon

Policy - Data Center

Ex Libris Information Security Policy

The purpose of this policy is to provide a security framework based on ISO 27002 that will ensure the protection of Ex Libris information from unauthorized access, loss or damage.

Icon

GDPR

Alma Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Alma, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

Policy - Data Center

Ex Libris Security Patches and Vulnerability Assesments Policy

Ex Libris continually seeks to ensure that its solutions do not contain vulnerabilities that may compromise the security of its products

Icon

Policy - Data Center

Ex Libris Data Classification Policy

This policy ensures that Ex Libris information assets are classified so that they receive the appropriate level of protection.

Icon

Policy - Data Center

Ex Libris IT Security Policy

The purpose of this document is to define clear rules for the use of the information systems and other information assets in Ex Libris.

Icon

Certification - Security

ISO 27017

Ex Libris certification: ISO 27017:2015

Icon

GDPR

360 Services Privacy Impact Assessment

This Privacy Impact Assesment includes a brief description of the data processed in 360 Services, the privacy impact, and the measures Ex Libris is taking in order to manage the risks identified.

Icon

GDPR

Primo Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Primo system, the privacy impact of this, and the measures ExLibris is taking in order to manage the risks involved.

Icon

GDPR

Addressing Data Subject Rights in Alpehino

This paper describes the tools and capabilities built into Alpehino that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Alpehino.

Icon

GDPR

Addressing Data Subject Rights in Pivot

This paper describes the tools and capabilities built into Pivot that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Pivot.

Icon

GDPR

Addressing Data Subject Rights in RefWorks

This paper describes the tools and capabilities built into RefWorks that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in RefWorks.

Icon

GDPR

Addressing Data Subject Rights in Urlich's XML Data Service

This paper describes tools and capabilities of the Ulrich’s XML Data Service to assist your organization in addressing data subject rights under the GDPR.

Icon

Policy - Security

Ex Libris Security And Privacy Incident Response Policy

The aim of this policy is to ensure that Ex Libris reacts appropriately to any actual or suspected security incidents relating to Ex Libris cloud systems and data.

Icon

Certification - Business Continuity

ISO 22301

Ex Libris certification: ISO 22301

Icon

Certification - Security

ISO 27001

Ex Libris certification: ISO 27001:2013

Icon

GDPR

Addressing Data Subject Rights in campusM

This paper describes the tools and capabilities built into campusM that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in campusM.

Icon

GDPR

Aleph Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Aleph, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

campusM Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in campusM, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

Leganto Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Leganto, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

Rosetta Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Rosetta, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

SFX Hosted Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in hosted SFX, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

SFX Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in SFX, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

Summon Privacy Impact Assessment

This Privacy Impact Assessment includes a brief description of the data processed in Summon, the privacy impact, and the measures Ex Libris is taking in order to manage the risks involved.

Icon

GDPR

Addressing Data Subject Rights in Aleph

This paper describes the tools and capabilities built into Aleph that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Aleph.

Icon

GDPR

Addressing Data Subject Rights in Alma

This paper describes the tools and capabilities built into Alma that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Alma.

Icon

GDPR

Addressing Data Subject Rights in bX

This paper describes the tools and capabilities built into bX that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in bX.

Icon

GDPR

Addressing Data Subject Rights in Intota & 360 Services

This paper describes the tools & capabilities in Intota & 360 that can assist you in addressing data subject rights & requests under the GDPR as a controller of personal data processed in Intota & 360.

Icon

Certification - Privacy

ISO 27018

Ex Libris certification: ISO 27018:2014

Icon

GDPR

Addressing Data Subject Rights in Leganto

This paper describes the tools and capabilities built into Leganto that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Leganto.

Icon

GDPR

Addressing Data Subject Rights in MetaLib

This paper describes the tools and capabilities built into MetaLib that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in MetaLib.

Icon

GDPR

Addressing Data Subject Rights in Primo

This paper describes the tools and capabilities built into Primo that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Primo.

Icon

GDPR

Addressing Data Subject Rights in Rosetta

This paper describes the tools and capabilities built into Rosetta that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Rosetta.

Icon

GDPR

Addressing Data Subject Rights in SFX

This paper describes the tools and capabilities built into SFX that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in SFX.

Icon

GDPR

Addressing Data Subject Rights in Summon

This paper describes the tools and capabilities built into Summon that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Summon.

Icon

GDPR

Addressing Data Subject Rights in Ulrichsweb

This paper describes the tools and capabilities built into Ulrichsweb that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Ulrichsweb.

Icon

GDPR

Addressing Data Subject Rights in USTAT

This paper describes the tools and capabilities built into USTAT that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in USTAT.

Icon

GDPR

Addressing Data Subject Rights in Voyager

This paper describes the tools and capabilities built into Voyager that can assist your organization in addressing data subject rights and requests under the GDPR as a controller of personal data processed in Voyager.

Icon

GDPR

Ex Libris and the General Data Protection Regulation

This paper is aimed at informing Ex Libris customers about the various GDPR compliance activities of Ex Libris (company, products and services.)

Icon

Policy - Security and Privacy

Security and Privacy Statement

Ex Libris is committed to providing its customers with a highly secure and reliable environment for our hosted and cloud-based applications, and have developed a multi-tiered security model that covers all aspects of hosted and cloud-based Ex Libris systems.

Icon