AudioCodes OVOC User Manual
International Headquarters
AudioCodes Inc.
Contact
GDPR Notice for AudioCodes
One Voice Operations Center
(OVOC)
This document describes the One Voice Operations Center (OVOC) support for GDPR. GDPR
aspects that are not listed in this document are considered as not relevant to the OVOC
product operation.
1 Overview and Definitions
GDPR defines ‘personal data’ as any information related to an identifiable person. This person
may be identified directly (i.e. by name) or indirectly through any other identifier which is
unique to that person. In the OVOC, individuals can be directly identified by name or indirectly
identified through other identifiers such as phone numbers. The OVOC manages, collects and
stores the following information:
a) Calls Information: OVOC collects and stores calls-related information from AudioCodes’
SBC and Media gateway, Microsoft on premise Lync or Skype for Business Monitoring
SQL Server, and from IP Phones and SIP clients reporting calls-related data using the RFC
6035 protocol.
The calls data includes the following information which may be used to identify a person:
I. Caller name
II. Caller phone number
III. Caller URI
IV. Callee name
V. Callee phone number
VI. Callee URI
VII. Full SIP messages call flow
b) Users Information: OVOC can be configured to connect to Active Directory using the
LDAPS protocol to retrieve end users’ information into the OVOC database. This
information is used in OVOC to correlate between the calls data and actual user names.
The users’ data includes the following information which may be used to identify a
person:
I. Full name
II. User name
III. Description
IV. Working department
200 Cottontail Lane, Suite A101E, Somerset, NJ 08873
Tel: +1-732-469-0880 Fax: +1-732-469-2298
1 Hayarden Street, Airport City, Lod 7019900
P.O.Box 255, Ben Gurion Airport, Israel 7019900
Tel: +972-3-976-4000 Fax: +972-3-976-4040
www.audiocodes.com/contact
Website
www.audiocodes.com
International Headquarters
AudioCodes Inc.
Contact
V. Office phone number
VI. Mobile phone number
VII. Home phone number
VIII. Microsoft Lync or Skype for Business line URI
IX. Email
c) Personal Device Information: OVOC can be used to manage devices such as AudioCodes’
or Polycom’s IP Phones and Jabra headsets and speakers. As part of the device
management procedures, the following information is collected and stored and may be
used to identify a person:
I. User name
II. Phone number
III. Login name
IV. Display name
d) Operator Information: OVOC can be configured to work with local operators. An
operator is a person who can login to the OVOC GUI and use the OVOC. Some of the
operators’ data is stored in the OVOC and may be used to identify a person:
I. Operator name
II. Full name
III. Phone number
IV. Email
V. Description
VI. List of IP Addresses of the machines the operator can login from
e) Syslog Information: OVOC may be used as a syslog server to collect syslog data from
AudioCodes’ SBCs and Media Gateways. The syslog messages stored in the syslog server
may contain CDR private information such as caller and callee phone numbers.
f) SBC and Media Gateway Debug Recording Information: The AudioCodes’ SBCs and
Media gateway can send debug recording packets to the OVOC. The OVOC stores the
debug recording data. Information that may be defined as private information in a debug
recording data could include, for example, a caller phone number and called phone
number.
The remainder of this document describes the compliance of OVOC’s handling of ‘personal
data’ per the corresponding GDPR sections. Apart from the above data sets, the OVOC does
not collect and retain any other ‘personal data’.
200 Cottontail Lane, Suite A101E, Somerset, NJ 08873
Tel: +1-732-469-0880 Fax: +1-732-469-2298
1 Hayarden Street, Airport City, Lod 7019900
P.O.Box 255, Ben Gurion Airport, Israel 7019900
Tel: +972-3-976-4000 Fax: +972-3-976-4040
www.audiocodes.com/contact
Website
www.audiocodes.com
International Headquarters
AudioCodes Inc.
Contact
2 Right of Access (Art 15)
The section above “Overview and Definition” fully outlines the scope of the data that is
retrieved and saved by OVOC and which can be regarded as personal data.
The OVOC operator can login to the OVOC GUI using a web access and look at the private data
using specific filters according to specific criteria such as name and phone number. Once the
filter is set, the operator can look at the specific subject personal data. A full explanation on
how to configure filters using the OVOC GUI can be found in the OVOC User’s Manual.
The OVOC allows tenant and system operators whose Security Level is configured as ‘Monitor’
or ‘Operator’ to conceal from view call details and user information that is exposed in calls:
The last digits in user’s phone are concealed from view
Information about callers and called parties in the Call Details page is replaced by ***
User / URI reports are disabled
Specific information on any user cannot be retrieved
User tables and statistics are concealed from view
SIP ladders and user call information are concealed from view
The OVOC operator can export personal data from OVOC to their network storage device (data
will be exported based on filter and privacy mode definition). Detailed explanations are
provided in the Section “Right to Data Portability (Art 20)”.
3 Right to Rectification (Art 16)
The calls information, user information, personal device information, syslog information and
SBC and Media Gateway Debug Recording information are extracted from external sources
and treated as ‘read only’ information once stored in the OVOC database. There is no
mechanism that allows a user to edit or modify the information once captured and stored as
part of a normal operation.
When the OVOC manages the operators locally, the operator information is controlled by the
OVOC administrator. The OVOC administrator can create, delete and edit the personal
information of the locally managed operators. Therefore, the OVOC administrator can rectify
the operator personal information per request.
200 Cottontail Lane, Suite A101E, Somerset, NJ 08873
Tel: +1-732-469-0880 Fax: +1-732-469-2298
1 Hayarden Street, Airport City, Lod 7019900
P.O.Box 255, Ben Gurion Airport, Israel 7019900
Tel: +972-3-976-4000 Fax: +972-3-976-4040
www.audiocodes.com/contact
Website
www.audiocodes.com
Loading...