What is the GDPR?
The General Data Protection Regulation (GDPR) is one of the biggest changes ever to how the processing of personal data should be carried out.
The General Data Protection Regulation (GDPR) is one of the biggest changes ever to how the processing of personal data should be carried out.
It applies to companies, but also any natural person, organization, public authority, agency or other body that processes personal data and is and / or does business with the EU. It enters into force on May 25, 2018 in the European Union (EU) and prevails over any national laws.
The GDPR has a huge impact on all the departments of numerous companies around the world. It is very likely that most will need to implement supplementary practices and safeguards and it is highly advisable to conduct an audit by suitably qualified experts.
Highlights of the main changes with the GDPR:
According to Personal Privacy, people have the right to:
- Access your personal information;
- Rectify your personal data;
- Erase your personal data;
- Oppose the processing of your personal data;
- Export your personal data.
Regarding Controls and Notifications organizations will need:
- Protect personal data using the appropriate security features;
- Notify the authorities of breaches of personal data;
- Obtain explicit consent for data processing;
- Keep records detailing data processing.
Organizations must have Transparent Policies:
- Clear reporting on data collection;
- Describe processing purposes and use cases;
- Define data retention and deletion policies.
According to the Technologies (IT) and Training it is necessary:
- Train employees and the privacy team;
- Audit and update data policies;
- Hire a Data Protection Officer (as needed);
- Create and manage supply contracts in compliance with regulations.
Arquiconsult together with Microsoft provides a Diagnosis that allows you to know at what stage your company is in relation to the General Data Protection Regulation and what measures you should take to avoid fines. Schedule your diagnosis through our email: comercial@arquiconsult.com.
Find more information about GDPR