On 25 May 2018, the General Data Protection Regulation known as GDPR (Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data) will come into effect.
What is the GDPR?
A new data protection law in the EU that updates existing laws to strengthen the protection of personal data in light of rapid technological developments, increased globalization, and more complex international flows of personal data. It replaces the patchwork of national data protection laws currently in place with a single set of rules, directly enforceable in each EU member state.
What does the GDPR regulate?
The GDPR regulates the “processing,” which includes the collection, storage, transfer or use, of personal data about EU individuals. Any organization that processes personal data of EU individuals, including tracking their online activities, is within the scope of the law, regardless of whether the organization has a physical presence in the EU. Importantly, under the GDPR, the concept of “personal data” is very broad and covers any information relating to an identified or identifiable individual.
How does GDPR change privacy rights?
The key changes are the following:
- Expanded data privacy rights for EU individuals
- Data breach notification
- Robust technical security and organizational measures
- Personal data processed in strict adherence to customer instructions
- Controlled sub-processing
- Data Protection Officer appointed when large volume of personal data
Sidetrade’s Commitment to Data Protection
The GDPR substantially reinforces the rights of natural persons over their personal data in the EU and integrates many innovations. Sidetrade welcomes the GDPR both as an important step and as an opportunity to reinforce its commitment to the protection of personal data in the context of the provision of its services.
Sidetrade group is aware of the value and importance for its customers of their personal data for their business and will ensure their protection through its comprehensive data protection and security program “ GDPR Readiness” designed to meet these new requirements.