×

1.800.379.7729 | Support: 3 | Sales: 2

Phone Intermedia icon
  • Search
  • Find a Solution Provider
  • Support
    • Support Home
    • Knowledge Center
  • Login
    • Customer Login
    • Partner Portal
    • AccessLine Services
    • AnyMeeting
intermedia logo
  • Products
    • VOICE & UNIFIED COMMUNICATIONS
    • Intermedia Unite®
    • Contact Center
    • AnyMeeting® Video Conferencing
    • AnyMeeting® Webinars
    • SIP Trunking
    • PRODUCTIVITY & EMAIL
    • Email Plus
    • Exchange Email
    • Microsoft 365
    • Microsoft 365 Apps
    • BACKUP & FILE MANAGEMENT
    • SecuriSync®
    • Backup for Microsoft 365
    • Outlook Backup
    • SECURITY & COMPLIANCE
    • Email Archiving
    • Email Encryption
    • Email Protection
    • Intermedia Unite®
    • Contact Center
    • AnyMeeting® Video Conferencing
    • AnyMeeting® Webinars
    • SIP Trunking
    • Email Plus
    • Exchange Email
    • Microsoft 365
    • Microsoft 365 Apps
    • SecuriSync®
    • Backup for Microsoft 365
    • Outlook Backup
    • Email Archiving
    • Email Encryption
    • Email Protection
  • Why Intermedia
    • Our Worry-Free Experience™
    • Overview
    • Security
    • Reliability
    • Onboarding
    • Support
    • Compliance
    • Success Stories
    • Business Innovators
    • Customer Stories
    • Partner Stories
    • Reviews & Awards
    • Integrations
    • App Marketplace
    • APIs (beta)
    • PROVIDING INDUSTRY SOLUTIONS
    • Healthcare
    • Legal Services
    • Financial Services
    • Automotive
    • Retail
    • Intermedia’s Worry-Free Experience™
    • Business Innovators
    • Customer Stories
    • Partner Stories
    • Reviews & Awards
    • Industry Solutions
  • About Us
    • Our Story
    • Who We Are
    • News & Awards
    • Analysts
    • Careers
    • Contact Us
    • Legal
    • Agreements
    • Vulnerability Disclosure
    • Who We Are
    • Newsroom
    • Analysts
    • Careers
    • Vulnerability Disclosure
    • Legal
    • Contact Us
  • Blog
  • Partners
    • Overview
    • Partnership Models
    • Program Benefits
    • Overview
    • Partnership Models
    • Program Benefits
  • Find local reseller
  • Overview
  • North America
  • Europe
  • Data Protection
  • Trademarks
  • SOC
  • ISO

Intermedia Legal

Your one-stop shop for Intermedia-related legal information

Data Protection

As a leading provider of cloud-based core business communications solutions, we at Intermedia take our security and privacy obligations very seriously and have instituted a number of security systems and procedures to protect our data and the data of our partners and customers.

General

Intermedia has extensive expertise managing a highly secure infrastructure and complying with complex regulations. Intermedia maintains a security environment that meets the requirements of data protection laws, including the General Data Protection Regulation (GDPR) for both the European Union and the United Kingdom, as well as California’s privacy protection laws, and we offer Data Processing Addendums (DPAs) to our partners and customers to help assure them that our processing and handling of their data will meet applicable legal requirements. Ultimately, every business needs to carefully assess their own business activities and their compliance with the data protection laws, but we can help by managing such compliance on the services we provide.

Data Protection and Privacy

At Intermedia, we’re committed to protecting the privacy of your data and making sure you have visibility regarding where and how it’s used. Your cloud contains extremely valuable and confidential content, including intellectual property, customer data, financial information, and personal data. You need to have confidence in how it’s stored and managed. Intermedia offers a clearly documented Privacy Policy, which governs our treatment and handling of personal data. To read Intermedia’s Privacy Policy, please visit this link.

Data Processing Addendum (DPA)

As a communications provider, Intermedia understands the importance of maintaining the privacy of personal data. We are committed to complying with the laws and regulations applicable to the processing of personal data in all jurisdictions where we do business, and we provide our partners and customers with a Data Processing Addendum (DPA) that regulates the processing of personal data subject to applicable data protection laws, which include, but are not limited to, the European Union’s General Data Protection Regulation (GDPR), the United Kingdom’s Data Protection Act 2018 and United Kingdom GDPR, and California’s privacy protection laws. Our partners and customers can view the DPA in the applicable administrative control panel (e.g., Partner Portal or HostPilot®) and through the following links below:

  • DPA-Direct Customers: Data Processing Addendum
  • DPA-Reseller: Data Processing Addendum

To the extent that a partner or customer requires an executed version of the DPA for statutory purposes, the partner or customer may submit a request to Intermedia through the Legal section of Intermedia’s administrative control panel.

Data Processing and Retention

The personal data we collect will be used and stored in accordance with applicable laws to the extent necessary for the processing purposes as outlined in our Privacy Policy. When a customer deletes their service account, Intermedia will delete the content data stored in Intermedia servers within a reasonable period of time in accordance with our policies.

Data Jurisdiction and Residency

Intermedia maintains datacenter locations in the Eastern and Western United States, Canada, the United Kingdom, Germany, Australia, and Japan. With respect to user content that is processed through Intermedia’s services, Intermedia generally aims to handle and store such data in the customer’s geographic region, when possible. In instances where a particular service is not able to be serviced through a datacenter in a customer’s geographic region, Intermedia strives to handle and store the customer’s user content in the datacenter closest to the customer’s location (e.g., the country in which the customer registered its account with Intermedia). Business and financial information related to Intermedia accounts, such as billing, order history and account contacts, is processed and stored in the United States.

Data Security

Intermedia has implemented and maintains a comprehensive written information security program that complies with applicable data protection laws, including appropriate technical and organizational measures to help ensure a level of security appropriate to the risk. To learn more about how Intermedia protects its customers’ data, you can review our Security Guides for details about specific services.

  • Unite Security Guide

Sub-Processors

Intermedia uses certain third-party sub processors to support the operation and delivery of Intermedia’s services and the conduct of its business activities. Any such sub processors will be permitted to process personal data only to facilitate and support the operation and delivery of Intermedia’s services, and they are prohibited from using personal data for any other purpose. Partners and customers can access the Sub-Processor List, and also subscribe to receive email notifications of changes by Intermedia, in their applicable administrative control panel.

Personal Health Information Requirements (such as HIPAA)

Countries around the world impose strict legal and regulatory requirements on the handling of medical and other personal health information (PHI) by healthcare providers. Intermedia’s robust set of security features and settings helps enable customers in the healthcare industry comply with those stringent requirements. In the United States, Intermedia offers a Business Associate Agreement (BAA) upon request and has designed its services to help support businesses in their efforts to comply with the administrative, physical, and technical standards required by the U.S. Health Insurance Portability and Accountability Act of 1996 (HIPAA).

Data Deletion / Subject Access Requests

Any Data Deletion Requests, Subject Access Requests or other similar requests made in accordance with applicable privacy law should be submitted via email to [email protected].

European Data Privacy Law (GDPR and UK GDPR)

The General Data Protection Regulation (GDPR) is a European privacy law that imposes significant requirements on any company or entity that handles, stores, collects, processes, uses, or analyzes any personal data of individuals located in the European Economic Area (EEA), and the United Kingdom (UK) has adopted a version of the GDPR to apply to personal data of individuals located in the UK. As used in this summary, the term "GDPR" refers collectively to the versions of that regulation adopted by the EEA and the UK. GDPR compliance requires a very detailed and business-specific analysis. Intermedia provides GDPR-related assurances regarding the services we provide. Intermedia strongly recommends that, if you have any questions regarding GDPR compliance for your own business, you seek the advice of your legal advisors.

Key Elements

The GDPR is complex, but the following is a high-level summary of its key elements:

  • Individuals Have Greater Control Over Their Data: Under the GDPR, individuals in the EEA or UK (referred to as data subjects) have "data subject rights", which include the right to (a) be informed how their personal data is collected and used; (b) access that data; (c) make corrections to, or delete, incorrect information about them; (d) "erasure" (which means they have the right to request that their personal data be deleted under certain circumstances); (e) limit or object to automated processing of their personal data; and (f) port the personal data provided by the individual.
  • Companies Must Maintain a Comprehensive Security Program: Entities that handle, store, collect, process, use or analyze any personal data of individuals located in the EEA or UK must implement and maintain a comprehensive security program with appropriate technical and organizational measures to help ensure a level of security appropriate to the risk, which includes, at a minimum, specific security measures identified in the GDPR (such as encryption of personal data and a process for regularly testing, assessing, and evaluating the effectiveness of those technical and organizational security measures).
  • Companies Have Stricter Disclosure and Notification Obligations: The GDPR imposes duties on companies to provide prompt notification of security breaches to data protection authorities and affected individuals. The GDPR also obligates entities to disclose to individuals the basis for processing their personal data, if their personal data is being processed by third parties, how their personal data will be transferred (if applicable), and how their data will be used.

International Data Transfer

Intermedia adheres to the requirements set forth by the GDPR, including by complying with the applicable Standard Contractual Clauses (SCCs), maintaining appropriate data security measures and performing Data Transfer Impact Assessments, for the international transfer of personal data of EEA and UK residents. To help our customers and partners meet the legal requirements of the GDPR, and to help assure them that we will protect the privacy of our users’ information, Intermedia provides its customers and partners with a Data Processing Addendum (DPA) that is subject to the SCCs and executes GDPR-compliant DPAs with our vendors.

Privacy Shield

Prior to July 16, 2020, Intermedia adhered to the EU-U.S. Privacy Shield Framework (Privacy Shield) set forth by the United States Department of Commerce and the European Commission regarding the collection, use, and retention of personal data collected from individuals located in the EEA. In its judgment of July 16, 2020 (Case C-311/18), however, the Court of Justice of the European Union invalidated the Privacy Shield. As a result of that decision, the Privacy Shield is no longer a valid mechanism to comply with European data privacy laws when transferring personal data from the EEA to the United States. That decision does not relieve participants in the Privacy Shield of their obligations thereunder with respect to information that was, prior to the invalidation of the Privacy Shield, transferred in accordance with and in reliance upon the Privacy Shield. Accordingly, solely with respect to such information, Intermedia adheres to the Privacy Shield regarding the collection, use, and retention of Personal Data contained therein that was collected from individuals located in the EEA. For more information about the Privacy Shield Principles, please read our Privacy Shield Notice, which is available here.

California Data Privacy Law (CCPA)

Effective January 1, 2020, the California Consumer Privacy Act (CCPA), a California data privacy law, imposes requirements on companies and entities that handle, store, collect, process, use or analyze personal data of residents located in California. Note that the CCPA provides exemptions from certain of its requirements for companies engaged in business-to-business commercial activities.

Intermedia is committed to complying with all applicable provisions of the CCPA with respect to the services we provide. Intermedia strongly recommends that, if you have any questions regarding CCPA compliance for your own business, you seek the advice of your legal advisors.

Key Elements

  • Individual Rights Over Their Personal Data: Under the CCPA, California residents have the right to access or delete personal data collected by a business and the right to opt out of a business’s "sale" of the individual’s personal data.
  • Businesses Have Stricter Disclosure and Notification Obligations: The CCPA imposes duties on businesses to provide a more detailed privacy policy explaining personal data collection, sharing practices and consumers’ rights.
  • Do Not Sell My Personal Information: The CCPA obligates businesses to provide a clear and conspicuous link on their website entitled "Do Not Sell My Personal Information" so that consumers may exercise their right to opt-out of "sales" of their personal data, if the business sells personal data.
  • Businesses Must Maintain a Comprehensive Security Program: The CCPA requires businesses to provide reasonable security to protect consumers’ personal data from unauthorized access or acquisition.
  • Service Provider’s Obligation: A service provider may only process personal data for the purposes specified in the written DPA with its customers and not for the service provider’s own commercial purposes.
  • Products
  • Intermedia Unite®
  • Contact Center
  • AnyMeeting®Video Conferencing
  • AnyMeeting® Webinars
  • SIP Trunking
  • Email Plus
  • Exchange Email
  • Microsoft 365
  • Microsoft 365 Apps
  • SecuriSync®
  • Backup for Microsoft 365
  • Outlook Backup
  • Email Archiving
  • Email Encryption
  • Email Protection
  • Why Intermedia
  • Security
  • Reliability
  • Onboarding
  • Support
  • Compliance
  • Business Innovators
  • Customer Stories
  • Partner Stories
  • Reviews & Awards
  • Industry Solutions
  • About Us
  • Who We Are
  • Analysts
  • Careers
  • Contact Us
  • Newsroom
  • Legal Agreements
  • Vulnerability Disclosure
  • Blog
  • Blog
  • Partners
  • Overview
  • Partnership Models
  • Program Benefits
  • Support
  • Support Home
  • Library
  • Support
  • Support Home
  • Library

  USA

  •   UK
  •   CA
  •   Australia

Intermedia Unite, SecuriSync, VoIP Scout, AnyMeeting and HostPilot are either trademarks or registered trademarks of Intermedia.net, Inc. in the United States and/or other countries.

J.D. Power Certified Assisted Technical Program

Intermedia has been recognized by J.D. Power for providing "An Outstanding Customer Service Experience" for its Assisted Technical Support. J.D. Power 2021 Certified Assisted Technical Program, developed in conjunction with TSIA. Based on successful completion of an audit and exceeding a customer satisfaction benchmark for assisted support operations. For more information, visit www.jdpower.com or www.tsia.com.

Users of this site agree to be bound by the Intermedia Service Agreement, Service Level Agreement and Acceptable Use Policies. Legal | AUP | Privacy Policy
Copyright © Intermedia.net, Inc. 1995 — 2023. All Rights Reserved.