Data Protection includes all measures and policies securing the integrity of all personal data under a company's responsibility as well as the proper processing, observing every right of the data subject.
Personal data can be understood as any piece of information relating to an identified or identifiable person. We talk about identifiable when it is possible to spot, directly or indirectly, the identity of a person, for example, through name, an identification number, location data, an online identifier or characteristics specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that person.
The new General Data Protection Regulation (GDPR) will come into force in May 2018 in all member states. Companies must prepare (see article) for its implementation before this date and keep an eye on their policies afterwards. Obligations, rights of individuals, public notifications, penalties (now up to 20M€ or 4% of worldwide annual turnover) have been updated and homogenized withing the EU.
One of the additions of the new GDPR is the Data Protection Officer (DPO). A DPO, weather internal or external, manages everything related to the processing of personal data.
Through acquiring a DPO, your company can access to the following services:
If you think your company needs Data Protection advice, you can request a budget or ask any question here.