Through targeted implementation, our consultants and solutions can support you with both basic and essential aspects of your EU Data Protection Regulation processes. Relevant solutions from our portfolio include SecurityInsider, iDNA Foundation and iDNA for Email, SmartChanger, MarvelClient, ConnectionsExpert and ApplicationInsights.
Join Florian Vogler for our next webinar in which he summarizes the most important legislative changes of the upcoming European Union’s “General Data Protection Regulation” (GDPR).
The new European General Data Protection Regulation (GDPR) will come into effect on May 25, 2018. However, it also brings new challenges for companies outside the European Union (EU). The legal regulation for data protection applies worldwide and for any cooperation with EU citizens.
We have summarized the most important regulations including the respective articles in the legal text for you (click to expand article)
It is particularly delicate that companies themselves carry the entire burden of proof in complying to the regulations. As such, we believe the following excerpts from the GDPR are extremely important:
The right to be forgotten, which is expressly referred to in the title of Article 17, is one of the central rights of the GDPR. It includes, on the one hand, that the person concerned (for example: customers, former employees, applicants, etc.) has the right to request the deletion of all data concerning them, if the reasons for the data storage are no longer relevant. Furthermore, the processor itself must actively delete the data when there is no longer any reason for storage and processing.
The most important measures according to obligations described in Article 22:
Much higher fines apply to effectively enforce the data protection regulations. For regulatory offenses, the fine is limited to 20 million Euros or up to four percent of the global annual turnover.
Member States may also enforce for further sanctions. According to recital (119) for example, it may be proposed to claim profits on account of breaching the GDPR.
Read the entire legal text on https://www.eugdpr.org.