New European Privacy Laws: the GDPR
In May 2018 the European Parliament adopted a new privacy law, the GDPR. This means that when it comes to securing personal data, the same laws are applicable in all European countries. Continue reading below to learn more about what this means.
The 3 changes brought about by the GDPR
When personal data has not been secured adequately, and therefore does not conform to the new laws, the person responsible can incur a large fine. Privacy authorities can impose fines of maximum 4% of the world wide turnover. This includes violations such as personal data which is stored but not securely and is therefore at risk of a data leak.
Organisations are obligated to regularly check their own (work) flows. This means that organisations that handle a lot of privacy sensitive data must reduce risks within these procedures as much as possible. Therefore, it is important to carefully control all processes. In addition to this, large organisations must either appoint a Chief Privacy Officer, or appoint someone in the company to take on the responsibility of making sure that the guidelines are being complied with.
The final and possibly the biggest change is that citizens ‘have the right to be forgotten’. This means that citizens have the right for results to be deleted from search engines under certain conditions. Personal data may no longer be saved, when this was previously permitted. This gives citizens more choice when it comes to deciding which parties may or may not share personal information online. This affects all companies from tech giants like Facebook and Google to the local dentist and municipal archives.
Interested in what secure e-mailing means in your industry?
Select the industry you are working in from the menu below and read on for more information.
Select your industry