We take our obligations seriously so we've shared some information on what the GDPR is, how it affects you and what we are doing to support our customers.
What is the GDPR?
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
It was adopted on 14 April 2016 and, after a two-year transition period becomes enforceable on 25 May 2018. The GDPR replaces the 1995 Data Protection Directive.
GDPR aims to make data protection regulations:
Updating EU data protection standards to make them more suitable for today’s world.
Remedying some of the perceived deficiencies of the current Data Protection Directive.
Achieving a better, more harmonised standard of data protection throughout the EU.
What does the GDPR change?
GDPR means significant change, but it’s a great opportunity for companies to take stock of their current data processing activities and make sure they’re protecting customer data appropriately.
While many organisations already do the right thing when it comes to personal data, GDPR requires organisations to document and be able to show how they comply with data protection requirements. This means additional documentation of systems, processes, and procedures.
On top of existing rights in the EU, like the right to access and correct personal data held by an organisation, GDPR introduces new data protection rights for individuals such as the right to obtain and reuse personal data across different services, and the right of erasure.
Organisations must implement technical and organisational measures to show they have considered and integrated data compliance measures into their data processing activities. This builds on the idea that privacy should be considered from the start (and throughout) the systems and product design process.
What is The EPOS Bureau doing about the GDPR?
From as far back as 2017, we embarked on a programme to identify which measures we needed to implement to be compliant. We have already added a number of new procedures and processes to address things like data handling and storage and we have ensured that the new regulation remains central to our operation long past the 28th May 2018.
Here's a summary of what we've done to date:
If you have any further questions regarding GDPR, in the context of Eureka™, then please feel free to make contact with our GDPR Team and we will do our very best to get you the information you require.
Enter a search term and when you're done typing, hit enter