The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years -we’re here to make sure you’re prepared.
The General Data Protection Regulation (GDPR) is a regulation by which the European Parliament, the Council of the European Union, and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). It also addresses the export of personal data outside the EU.
The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.
What are the requirements of the GDPR?
Consent to store data
Data subjects must be given the opportunity to choose whether to consent to the processing of their personal data
Data subjects must have the ability to easily withdraw their consent to process their personal data
Right to access
Data subjects have the right to obtain confirmation as to whether or not personal data concerning them is being collected, where, and for what purpose. Further, the controller is required to provide, upon request, a copy of the personal data, free of charge, in an electronic format.
Right to be forgotten
Data subjects have the right to request that the data controller erase his/her personal data, cease further dissemination of the data, and stop any third parties from processing of the data.
Data subjects must be notified of any data breach which is likely to “result in a risk for the rights and freedoms of individuals”, within 72 hours of first having become aware of the breach.
Data subjects have the right to receive their personal data in a portable electronic format that allows them to transfer the data to another controller.
Who is affected by GDPR requirements?
The regulation applies if the data controller, an organization that collects data from EU residents, or processor, an organization that processes data on behalf of data controllers like cloud service providers or the data subject (person) is based in the EU. The regulation also applies to organizations based outside the EU if they collect or process personal data of individuals located inside the EU.
What is personal data?
According to the European Commission, “personal data is any information relating to an individual, whether it relates to his or her private, professional or public life. It can be anything from a name, a home address, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer’s IP address.
What Raklet does to address GDPR?
As a cloud service provider for your organization, Raklet is also affected by GDPR.
In the frame of GDPR, we ensure the convenience of all third-party service providers to the requirements.
We provide all technical features which allow you to manage personal data collection process transparently. You can inform your users about all GDPR requirements while the application process and take their consent. They can access their profiles and withdraw their consent whenever they want.
Your right to be forgotten is always protected. You can cancel your account and delete all your data whenever you want.
For more information about GDPR click:
EU Data Protection Guide
GDPR Home Page