Written by Roland Trimmel | Categories: News
The European Union's General Data Protection Rules (GDPR) are becoming effective by May 25, 2018. These provide for some stringent measures as to how businesses handle personal data, and how they are being held accountable.
Here is all you need to know about it.
EU General Data Protection Rules (GDPR)
The European Union (EU) has long taken the lead on the protection of personal data from its citizens, and those outside the EU doing business with European companies. The efforts to lobby for more protection for consumers' data globally have been manifested in the GDPR more than two years ago, which now become effective in a few days time.
In light of the Facebook Cambridge Analytica scandal it is worth mentioning that businesses and individuals for quite a long time had to take few measures on how personal data is collected, used, disclosed, shared and stored. This at worst led to some lax policies, if any at all, in which personal data got exposed and/or abused, such as seen in the latter case. This all changes with the introduction of the EU GDPR, with ramifications for businesses around the globe - and, much more protection for consumers.
Under the EU GDPR every company now not only has to explain collection, protection, usage and disclosure of personal information, but also why it does so and what for. This is a very different position from before when it was allowed to collect personal information that had no relevance for the transaction between two parties - e.g. collecting your religious beliefs when signing up for a calendar app (when no obvious reason exists why these particular data are needed for service delivery). Further, the EU GDPR mandates that each individual has a right for deletion of their personal information which must be granted.
For a full overview of the new law, visit the EU GDPR Information Portal. And, of course we're here to help if you have questions.