GDPR Compliance Breaking Down

[vc_row heading_color=”light” bg_type=”image” bg_image=”101982″ color_overlay=”dark” opacity_overlay=”20″ padding_top_multiplier=”4x” padding_bottom_multiplier=”” separator_bottom_size=”60px” font_color=”#ffffff”][vc_column][movedo_empty_space height_multiplier=”3x”][/vc_column][vc_column width=”12/12″][movedo_title heading_tag=”h1″ heading=”h1″ increase_heading=”160″ align=”center” animation=”grve-fade-in-up”]GDPR Compliance Breaking Down[/movedo_title][/vc_column][vc_column][movedo_empty_space height_multiplier=”6x”][/vc_column][/vc_row][vc_row heading_color=”light” padding_bottom_multiplier=”” tablet_sm_visibility=”hide” mobile_visibility=”hide” font_color=”#ffffff”][vc_column column_custom_position=”yes” position_top=”minus-3x” shadow=”large” clipping_animation=”clipping-left” animation_delay=”600″ css=”.vc_custom_1567415780406{padding-top: 30px !important;padding-right: 30px !important;padding-bottom: 30px !important;padding-left: 30px !important;background-color: #cf9450 !important;}”][movedo_callout title=”Request Gambling Consulting” heading=”h4″ button_text=”Request Now” button_color=”white” button_size=”small” button_link=”url:https%3A%2F%2Fszilaghi.com%2Fwordpress%2Fcontact%2F|title:Contact||”][/movedo_callout][/vc_column][/vc_row][vc_row heading_color=”light” padding_top_multiplier=”” padding_bottom_multiplier=”” desktop_visibility=”hide” tablet_visibility=”hide” font_color=”#ffffff”][vc_column column_custom_position=”yes” position_top=”minus-3x” shadow=”large” clipping_animation=”clipping-left” animation_delay=”600″ css=”.vc_custom_1567415780406{padding-top: 30px !important;padding-right: 30px !important;padding-bottom: 30px !important;padding-left: 30px !important;background-color: #cf9450 !important;}”][movedo_button btn_fluid=”custom” align=”center” button_text=”Request Offer” button_color=”white” button_link=”url:https%3A%2F%2Fszilaghi.com%2Fwordpress%2Fcontact%2F|||”][/vc_column][/vc_row][vc_row padding_top_multiplier=”2x” padding_bottom_multiplier=”4x”][vc_column][movedo_title]GDPR Compliance Breaking Down[/movedo_title][movedo_empty_space height_multiplier=”2x”][vc_column_text]There are 99 articles within the GDPR, ranging from general provisions to responsibilities of the controller and processor to cooperation with the supervisory authority, and more. The bullets below indicate a sample of the more noteworthy articles:

• Articles 12-23: If an individual requests access to their data or requests that data be removed from a company’s records (known as the “right to be forgotten”), the controller must comply within one month.
• Articles 24-43: Organisations must proactively demonstrate they understand the data they have access to, how to use that data, and how to safeguard that data. Therefore, organisations must maintain, document, and enforce data protection policies and procedures.
• Article 32: Organisations that collect personal data must have rigorous due diligence processes to ensure the appropriate technical and organisational controls are in place before sharing data with vendors. These organisations should establish a process for regularly testing their vendors.
• Article 33: If a data breach takes place, the company collecting the personal data must notify its national regulator of said breach within 72 hours of breach discovery.
• Articles 37-39: Certain organisations that process data may be required to appoint a Data Privacy Officer.
• Articles 44-50: Any organisation anywhere in the world that processes the data of an EU citizen—not only those operating in the EU—must comply with GDPR requirements.

Given the articles listed above (and the dozens of others in the GDPR), organisations need to understand the data they have access to, how they use it, and track and monitor the controls they have in place as part of their overall GDPR compliance requirements.

Has your organisation checked off some of the following tasks to begin preparing for GDPR compliance?

1. Create an inventory of your processes that relate to personal data.
2. Create a privacy impact assessment and data map.
3. If applicable, ensure the information and the consent language you provide to your customers is transparent, clear, unambiguous, and written in plain language.
4. Outline a plan for compliance with the more complex rights of the data subject, including rights of access, rights of correction, rights of rectification, rights of data portability, and rights of erasure.
5. Have a process by which you risk-assess your own data.
6. Have an understanding of where and how you share personal information with third parties, and ensure that you have the correct contracts in place with these processors to comply with laws.
7. Assess your information security programme as it relates to personal data, including third parties you share such data with.
8. Establish a mechanism to identify if, when, and where any breach takes place and how you will handle it.

[/vc_column_text][/vc_column][/vc_row][vc_row heading_color=”light” bg_type=”color” padding_top_multiplier=”2x” padding_bottom_multiplier=”2x” tablet_sm_visibility=”hide” mobile_visibility=”hide” font_color=”#ffffff” bg_color=”#cf9450″][vc_column][movedo_callout title=”Request Gambling Consulting” heading=”h4″ button_text=”Request Now” button_color=”white” button_size=”small” button_link=”url:https%3A%2F%2Fszilaghi.com%2Fwordpress%2Fcontact%2F|title:Contact||”][/movedo_callout][/vc_column][/vc_row][vc_row heading_color=”light” bg_type=”color” padding_top_multiplier=”2x” padding_bottom_multiplier=”2x” desktop_visibility=”hide” tablet_visibility=”hide” font_color=”#ffffff” bg_color=”#cf9450″][vc_column width=”1/4″][/vc_column][vc_column width=”1/2″][movedo_button btn_fluid=”custom” align=”center” button_text=”Request Offer” button_color=”white” button_link=”url:https%3A%2F%2Fszilaghi.com%2Fwordpress%2Fcontact%2F|||”][/vc_column][vc_column width=”1/4″][/vc_column][/vc_row]