Data Protection/ GDPR
The General Data Protection Regulation (GDPR) is a European regulation enforceable from May 25, 2018. It aims at protecting personal data for all individuals within the EU.
Sanctions for non-compliance can go up to 20 million € or 4% of your organization’s annual revenue.
Reading recommendation
A good introduction to the matter can be found here: GDPR Handbook: Unlocking the EU General Data Protection Regulation
What kind of Data is concerned by the GDPR ?
Any personal, professional, private or public information, related to an individual:
- Personal Data
-
Name
-
Birthday
-
Address
-
Photo
-
Email Address
-
Financial details
-
Medical information, Genetic Info
-
Social Media Posts
-
Bank details
-
IP Address
-
etc.
What needs to be controlled to be GDPR-compliant ?
Documents and process are in place, as well as responsible Individuals:
Data access control: implement mechanisms to ensure that personal data is only processed by authorised personnel, and only when necessary.
Log and Audit: maintain records of processing activities for all personal data. These records must be made available to supervisory authorities on request.
Data breaches: Each person impacted must be identified and notified. Authorities must also be notified within 72 hours after discovery of a data leak.
User consent & access: it must be explicit and easy to withdraw. Indicate which and how personal data is processed, its retention time, and provide contact information to access, modify, erase or transfer data.
Design: implement data protection measures together with the design and development phase of the application.
Log and Audit: maintain records of processing activities for all personal data. These records must be made available to supervisory authorities on request.
Data breaches: Each person impacted must be identified and notified. Authorities must also be notified within 72 hours after discovery of a data leak.
User consent & access: it must be explicit and easy to withdraw. Indicate which and how personal data is processed, its retention time, and provide contact information to access, modify, erase or transfer data.
Design: implement data protection measures together with the design and development phase of the application.
Where to find the legal notice?
Choose between these two options and then select your language from the drop-down list.
Order processing agreement
Below the first text block you will find a link to our order processing agreement.
If you click on it, a new tab will open where you will find all the steps for digitally signing the agreement.
If you click on it, a new tab will open where you will find all the steps for digitally signing the agreement.
Enter all the important information in the following boxes and press 'save' when you are done.