GDPR. Four letters with a big impact.
This time, a rather short, technical but important blog post. We think it’s crucial that you are aware of this.
What is GDPR?
GDPR, or the General Data Protection Regulation (Regulation (EU) 2016/679), is a regulation by which the European Parliament, the Council of the European Union and the European Commission strengthen and unify data protection for all individuals within the European Union. This regulation has a big impact on how companies should treat data : as from May 25th, 2018 they should be able to prove how their private data are gathered, how they are used and how they are protected (whether in their own data centers or in a ‘cloud’ outside of the EU).
- Protection of personal data of the European citizen
- Measures against hackers and data leaks
- As of May 25th, 2018
- A procedure determining policies about data gathering and data storage of EU citizens
- Permission policy to acquire and to use data
- The individual right to be excluded of these databases
- Enhanced security procedures
- Breaching of data should be reported within 72 hours
- The National Authorities can issue fines if these rules aren’t applied
- Large organizations should appoint a DPO (Data Protection Officer)
“We truly recommend that you -or your IT specialist- read it, since it can have a big impact on your organization.”
For this complex matter, we prefer to refer to this EU website. We truly recommend that you -or your IT specialist- read it, since it can have a big impact on your organization.
Should you prefer to be guided through this process, we’ll be happy to put you on the right track.