“Protecting Your Data, Safeguarding Your Rights: Adhere to GDPR with Us
GDPR
The EU GDPR sets out seven key principles:
Lawfulness Fairness and Transparency
Purpose Limitation
Data Minimisation
Accuracy
Storage Limitation
Integrity and Confidentiality (security)
Accountability.
1. What is GDPR?
The GDPR (General Data Protection Regulation) is an EU Regulation which replaces the 1995 EU Data Protection Directive (DPD) to significantly enhance the protection of the personal data of EU citizens and increase the obligations on organizations who collect or process personal data. It came into force on 25th May 2018 and builds on many of the 1995 Directive’s requirements for data privacy and security, but includes several new provisions to bolster the rights of data subjects and add harsher penalties for violations.
2. Who does GPDR apply to?
While the current EU legislation (the 1995 EU Data Protection Directive) governs entities within the EU, the territorial scope of the GDPR is far wider in that it also applies to non-EU businesses who a) market their products to people in the EU or who b) monitor the behavior of people in the EU. In other words, even if you’re based outside of the EU but you control or process the data of EU citizens, the GDPR will apply to you. Since every business is different and the GDPR takes a risk-based approach to data protection, companies should work to assess their own data collection and storage practices, seek their own legal advice to ensure that their business practices comply with the GDPR.
3. GDPR Rights
GDPR guidelines provides the customers with various rights to be secured in case of any violation. They are;
Right to be informed
Right of access
Right to rectification
Right to erasure
Right to restrict processing
Right to data portability
Right to object
Rights around automated decision making and profiling
More detailed information about GDPR, its merits and cons can be found here
