Veeva CRM Events Management and GDPR

Veeva CRM Events Management is a single solution to plan and execute all events across the enterprise. It gives you seamless control and total visibility of all speakers, attendees, activities, and spend, for greater compliance.

Right to Be Forgotten

You may need to delete customer and prospect data to comply with data protection and privacy regulations. Veeva CRM offers all the features of the Salesforce Platform that enable you to meet your obligations under the GDPR. Deletions of Veeva CRM instances (orgs) are synced regularly.
Learn more »


Data Portability

Your customers may request a copy of their personal data in a standard format. You can use Salesforce Platform capabilities to extract their data. Data can be extracted via both UI-driven and API-driven methods, including reports and report/dashboard APIs, data loader, Apex, SOAP and REST APIs, and third-party ETL tools. Export formats include CSV, JSON, and XML.
Learn more »

Alternatively, you can build a Veeva CRM MyInsights visualization summarizing personal data stored in Veeva CRM. This summary can be printed and exported to be shared with your customers.
Learn more »


Restriction of Processing

Leveraging Salesforce Platform capabilities, records in Veeva CRM can be identified, exported, and deleted upon receiving a verified request to restrict processing. If the restriction is lifted at a later date, the records can be re-imported.
Learn more »


Signature Capture

Multiple processes within Veeva CRM and Veeva CRM Events Management have integrated signature capture. This provides support to collect personal data processing permissions / confirmations from individuals during the data capture. Signatures are stored as proof of individual’s consent for personal data processing. Supported processes:

  • Event Attendee Sign-in – Signature capture for registered and walk-in attendees to identify attendance.
    Learn more »
  • Speaker Contracts – Capture physical signature of the speaker to sign off the contract with ability provide a physical copy of the contract to the speaker.
    Learn more »

  • Data Accuracy

    Veeva has appropriate technical and organizational security measures in place to protect personal data.

    Veeva has an Information Security Management System (ISMS) and maintains current ISO 27001 and 27018 certifications.

    Veeva is continually reviewing its security measures for enhancements, including as part of its GDPR Compliance Program.


    Breach Notification

    Veeva has a data breach management policy and a security team in place to identify violations and to ensure correct and timely action. If Veeva becomes aware of a data breach, it will contact the customer(s) affected within 72 hours.


    Privacy by Design

    Veeva has established privacy by design and privacy by default policies and controls for all products.