General Data Policy Regulation (GDPR)

  • Home
  • Blog
  • General Data Policy Regulation (GDPR)

What is GDPR 

EU GDPR is the European standard that specifies the requirements for a General Data Policy Regulation (GDPR). GDPR compliance states that organizations must adopt appropriate policies, procedures and processes to protect the personal data they hold. 

The primary objective of the GDPR is to give citizens back control of their personal data. If you control or process the data of EU citizens and based in or outside of the EU, the GDPR will apply to you. GDPR certification is a new feature that allows entities to receive certification from approved certification bodies to show compliance with GDPR. 

gdpr, data, protection

What is Infosec Mates GDPR Services? 

  1. InfosecMates provides consulting for GDPR this includes:
    • Consultation on what type of data they handle
    • What kind of data storage
    • Policy and procedures to save data
    • What is the agreement you have with clients to handle data
  2. Define the Roles and Responsibilities for compliance with GDPR
    • Do they have a Data Controller and DC plan

Why GDPR Compliance is important to you? 

GDPR is a regulation that dictates specific requirements with which businesses must comply to protect the personal data privacy of EU citizens. The regulation also includes the monitoring of data that is exported outside the EU. The European Parliament adopted the GDPR in April 2016, replacing a rather outdated data protection directive from 1995. 

It is important to note that Europe was always aware of the importance of public content safety and had, therefore, already implemented the Data Protection Directive in the year 1995. This was when Internet was yet to become the hub of businesses. However, with time, the requirement for a more detailed regulation was understood and implemented in the form of GDPR. 

The regulation covers the protection of the following data: 

  • Personal data that relates to an identified or identifiable ‘individual’, for example; 
    • name, address, and/or ID numbers
  • Web data such as location, IP address, cookie data, and RFID tags
  • Special Category Information, for example;
    • Health and genetic data
    • Political opinions
    • Biometric data
    • Racial or ethnic data
    • Sexual orientation

Leave a Reply

Your email address will not be published.