The EU General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years. We’re here to make sure you’re prepared.
The key points are listed in EU’s Data Protection Overview as below. You can find more information here about how to be prepared for the GDPR.
Use plain language. Tell them who you are when you request the data. Say why you are processing their data, how long it will be stored and who receives it.
Get their clear consent to process the data. Collecting from children for social media? Check age limit for parental consent.
Access and Portability
Let people access their data and give it to another company.
Inform people of data breaches if there is a serious risk to them.
Give people the ‘right to be forgotten’. Erase their personal data if they ask, but only if it doesn’t compromise freedom of expression or the ability to research.
If you use profiling to process applications for legally binding agreements like loans you must:
- Inform your customers;
- Make sure you have a person, not a machine, checking the process
- if the application ends in a refusal;
- Offer the applicant the right to contest the decision.
Give people the right to opt out of direct marketing that uses their data.
Safeguarding sensitive data
Use extra safeguards for information on health, race, sexual orientation, religion and political beliefs.
Data transfer outside the EU
Make legal arrangements when you transfer data to countries that have not been approved by the EU authorities.
Raklet is with you while preparing for GDPR. Our latest updates allow you to manage the process more transparently.