General Data Protection Regulation (GDPR) Compliance
GDPR is a set of regulations that requires businesses to protect the personal data and privacy of citizens in European Union (EU) for transactions that occur within EU member states.
Companies that collect data on citizens in European Union (EU) needs to comply with rules around protecting customer data. The General Data Protection Regulation (GDPR) sets a the standard for consumer rights regarding their data.
GDPR Fines
After May 25th, 2018, businesses that are not in compliance with GDPR can face fines – up to 4% of a company’s global revenue or €20 million (whichever is greater). While GDPR will ultimately result in fines, usually any non-compliance will begin with a warning first, only after a continual violations of the law will the fines be issued.
Are you ready for the GDPR?
Here is a link for GDPR checklist for data controllers. This GDPR checklist provided by the European Union can help you secure your organization, protect your customers’ data, and avoid costly fines for non-compliance.
A Do-It-Yourself Checklist
Here is a checklist if you want to try it: https://gdpr.eu/checklist/
More information can be found at: https://gdpr.eu/
Other Privacy and Data Protection Laws
Brazilian General Data Protection Law or Lei Geral de Proteção de Dados (LGPD)
Brazil passed the General Data Protection Law in 2018, and it will come into effect February 2020.
Read or Download the LGPD in PDF format.
How to make your installation GDPR compliant?
To be become a GDPR compliant, your business need to follow some guidelines and processes, including:
- Employee awareness, making sure employees know the risks and challenges in working with personal data
- Review and identify how your current work processes are affected
- Understand data collection in your organization
- Implement and enforce data retention policies
- Ensure there are processes for the customer to request to be forgotten
- Communicate with customers and make them aware of their options (i.e. opt-out, to erase personal data, etc.).
How we can help ?
Our team can help your organization achieve compliance by reviewing all data privacy-related risk areas, and implement systems and policies achieve compliance. Additionally we can help to create systems, processes and workflows in place to maintain the compliance so you can continue goods or services to EU residents.
Remember If you maintain an eCommerce website with transactions in European Union member States you need to comply with GDPR in order to protect the personal data and privacy of your clients. Contact us and we review your eCommerce system to ensure you are in complaint with the GDPR regulations.
Recent Articles
RFID Data Collection and TransferThere are generally two conventional methods for transferring field data to the enterprise system, O...- RFID in Waste ManagementRFID technology provides non line of sight identification and has a high data transmission rate. RFI...
- Who’s Calling? Robocalls AnalysisWho’s Calling? Characterizing Robocalls through Audio and Metadata Analysis Unsolicited phone calls...
