There's only a few weeks left until GDPR is in place for organisations and it is important to know how it will not only affect your company but also your personal data. There are a series of rules and regulations which have been put in place that if broken, could cause serious consequences for an organisation.
The GDPR regulation applies to organisations, companies that process and keep personal data of European citizens. Bodies that spring to mind could be educational workplaces, health sectors, organisations and importantly social media platforms.
GDPR is set to begin on the 25th of May 2018. Businesses will have until then to prepare their data until the law actually applies to them. This may mean removing data that is not relevant or physical copies of data.
GDPR is being introduced to make sure that personal data is being kept secure. Failure to comply with the new laws to be set in place could mean a finacial penalty. A breach must be reported within 72 hours. This time will give you a chance to report the nature of the breach as well as the amount of people that have been affected by it. It is also important to notify those who may be victim to the breach, so that they are aware of what is going on.
The information which will be protected goes from information such as images, bank details, social media posts, medical records and IP addresses.
The users who are on a website have the right to browse the website without any interference or worries that there details may be used without their permission. Therefore companies have to be very clear with their privacy policies and procedures making sure the policy language is easy to understand, outlaying all the information to the users so they understand what is happening to their information whilst browsing the website.
With the GDPR coming into effect soon, cookies on website pages now have to be complying with the GDPR rules. This means a user can now opt in or out of a company using their data.
Opting in an out now requires a consent form from the website to the user. Websites now have to make sure the opting language is clear and concise. Additionally, online websites have to transparent if there are any changes to the opting in and out process they have make the users aware.
Once a user opts into a website it is the responsibility of the company to make sure the record of the time and data the individual opted in is provided.
GDPR is certainly going to change the way in which data is kept, the way we use social media and the way we share our personal information. What lies ahead for GDPR? We shall see..