The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. It will come into effect in May 2018 but now is the time to get ready and put your plans in place.
The EU GDPR increases privacy for the individual.
This new legislation will increase a person’s expectation of data privacy and will give them more protection than ever before. There are now many types of information that constitute personal data. Information such as name, photo, email address, racial origin, bank details, posts on social media, medical information, IP address and other tracking data are all now included.
Stricter Guidelines for Business
This will increase the organisation’s obligation to follow legislation particularly around cybersecurity and online practices. Terms and conditions that may have been created by a company in the past will be replaced by rules that are clear and easily understandable. Organisations must make it easy for those they contact to withdraw their consent.
Greater power for bodies
It gives the regulatory bodies greater power to enforce measures and take action against any organisation that breaches the new laws. The fines for breaching the legislation are up to 4% of annual global revenue or €20 million, whichever is greater. These fines can come into force where it is proved an organisation does not have sufficient customer consent to process data.
The right to be forgotten
This is also referred to as data erasure and gives a person the right to have their personal data erased and stop third parties processing this data.
There will be internal record keeping requirements for many organisations including Datascan Document Services. As we process large amounts of data, much of it of a sensitive nature we must ensure we are completely compliant with the new GDPR. That was one of the reasons we decided to go for ISO 27001 certification.
Orla Cafferty, Director, Datascan Document Services said: “There are many challenges that face businesses including the implementation of the General Data Protection Regulation in May 2018, which will allow for the tightening and harmonisation of the rules on Data Protection. This will empower the local Data Protection Commissioner with the ability to impose onerous fines on businesses found in breach. Through Datascan Document Services, businesses can avoid such fines and securely retrieve, extract vital data and validate the outputs without ever having to see a hard copy document, which is very powerful in business today.”
Datascan Document Services are accredited with an ISO 27001 certification by BQAI. This is an international standard that acknowledges our continued commitment to information security. It is also a validation for the services that our team of experts provide.