Why you need to use GDPR-compliance services?

As a business leader, it is beneficial to use GDPR-compliant services, both for regulatory and data security reasons. Several aspects of the GDPR relate to the subcontractors your company uses, detailing your responsibilities as a data controller.

Want to learn more about GDPR?

Watch an explanatory Video!

Watch Video now.

Data protection principles

If you process data, you have to do so according to seven protection and accountability principles outlined in Article 5.1-2:

animated

Lawfulness, fairness and transparency

Processing must be lawful, fair, and transparent to the data subject.

animated

Purpose limitation

You must process data for the legitimate purposes specified explicitly to the data subject when you collected it.

animated

Data minimization

You should collect and process only as much data as absolutely necessary for the purposes specified.

animated

Accuracy

You must keep personal data accurate and up to date.

animated

Storage limitation

You may only store personally identifying data for as long as necessary for the specified purpose.

animated

Integrity and confidentiality

Processing must be done in such a way as to ensure appropriate security, integrity, and confidentiality (e.g. by using encryption).

animated

Accountability

The data controller is responsible for being able to demonstrate GDPR compliance with all of these principles.

People’s privacy rights

You are a data controller and/or a data processor. But as a person who uses the Internet, you’re also a data subject. The GDPR recognizes a litany of new privacy rights for data subjects, which aim to give individuals more control over the data they loan to organizations. As an organization, it’s important to understand these rights to ensure you are GDPR compliant.

The right to be informed

Individuals have the right to be informed about the collection and use of their personal data.

binary code

The right to restrict processing

Individuals have the right to request the restriction or suppression of their personal data.

data security

The right of access

Individuals have the right to access and receive a copy of their personal data, and other supplementary information.

gdpr 1

The right to data portability

The right to data portability allows individuals to obtain and reuse their personal data for their own purposes across different services.

secure data

The right to rectification

An individual has the right to have inaccurate personal data rectified, or completed if it is incomplete.

gdpr 2

The right to object

Individuals have an absolute right to stop their data being used for direct marketing.

gdpr 3

The right to erasure

Individuals can make a request for erasure verbally or in writing. The right to erasure is also known as ‘the right to be forgotten’.

security

Rights in relation to automated decision making and profiling.

Automated individual decision-making is a decision made by automated means without any human involvement.

binary code

NOT SURE IF YOU COMPANY IS OBLIGED TO APPLY GDPR?

No problem. Send us a ticket  and we’ll get back to you with a quote.