
How has EBSCO prepared?
Our ongoing compliance effort builds on our existing investments in privacy, security and operational processes necessary to meet the requirements of GDPR and other applicable regulations. As a data processor, EBSCO understands its obligation to help its customers comply with GDPR.


EBSCO as a data processor
With respect to GDPR, customers of EBSCO Information Services's (EIS) products and services will act as the data controller for any personal data they provide to EIS in connection with their use of EIS’s products and services. The data controller determines the purposes and means of processing personal data, while the data processor processes data on behalf of the data controller. EIS serves as the data processor with respect to its customers, and processes personal data on behalf of the data controller when the data controller is using the products and services it purchased from EIS.