What is GDPR?
The General Data Protection Regulation (GDPR) is the world's most stringent privacy and security law. Although it was developed and adopted by the European Union (EU), it imposes obligations on organizations that target or collect data on EU citizens. On May 25, 2018, the decree entered into force.
Scope, penalties, and key definitions
Even if you are not located in the EU, the GDPR applies to you if you process personal data or provide services to citizens.
The consequences for violating the GDPR are extremely serious. Fines vary by venue, but if you break the rule, you will be fined. Data subjects also have the right to seek redress if they have been harmed.
Main terminologies that relate to GDPR
Data processing - Any operation performed on data, whether automatic or manual, is referred to as data processing. Collecting, capturing, arranging, structuring, storing, using, erasing... essentially everything is said in the document.
Data subject - The individual whose information is being processed. These are the site users or clients.
Data controller - The person who makes the decisions on why and how personal data is processed. This is you if you're a data-handling owner or employee in your business.
We've thought about everything.
We have ongoing and future initiatives focused on the General Data Protection Regulation (GDPR) that will assist you in maintaining personal data protection in your company and complying with GDPR requirements.
Some are included here:
About certification: General Data Protection Regulation (GDPR)