[et_\u200bpb_\u200bsection bb_built=\u201c1\u201d][et_pb_row][et_pb_column type=\u201c4_4\u201d][et_pb_text _builder_version=\u201c3.13.1\u201d]<\/p>\n
GDPR (Gen\u00ader\u00adal Data Pro\u00adtec\u00adtion Reg\u00adu\u00adla\u00adtion) might seem like a com\u00adpli\u00adcat\u00aded chal\u00adlenge that sure\u00adly con\u00adfus\u00ades many exec\u00adu\u00adtives and com\u00adpa\u00adny own\u00aders. Even though at first glance the GDPR reg\u00adu\u00adla\u00adtion may not feel like agile dig\u00adi\u00adtal age solu\u00adtion, it nev\u00ader\u00adthe\u00adless is a nec\u00ades\u00adsary reform. The goal of the reform is to pro\u00advide the Euro\u00adpean Union with an up-to-date, strong, uni\u00adfied, and com\u00adpre\u00adhen\u00adsive data pro\u00adtec\u00adtion framework.<\/span><\/p>\n Once enforced, GDPR will be an extreme\u00adly strict data pro\u00adtec\u00adtion law. Its gen\u00ader\u00adal pur\u00adpose is to secure con\u00adsumer infor\u00adma\u00adtion and to ensure data pro\u00adtec\u00adtion rights. At the same time, it forces orga\u00adni\u00adza\u00adtions to reflect what data is being col\u00adlect\u00aded and how this data is used. Infringe\u00adment of the reg\u00adu\u00adla\u00adtions can lead to fines of var\u00adi\u00adous amounts, and at worst, they can be up to four per\u00adcent of annu\u00adal rev\u00adenue. Auch!<\/span><\/p>\n GDPR will affect all the orga\u00adni\u00adza\u00adtions that process per\u00adson\u00adal data in the EU. The def\u00adi\u00adn\u00adi\u00adtion of per\u00adson\u00adal data pro\u00adcess\u00ading in the con\u00adtext of the reg\u00adu\u00adla\u00adtion has been defined to prac\u00adti\u00adcal\u00adly cov\u00ader all types data use such as data col\u00adlec\u00adtion, record\u00ading, retrieval, alter\u00adation and destruc\u00adtion. The data pro\u00adtec\u00adtion reg\u00adu\u00adla\u00adtion is applied to both \u201cCon\u00adtrollers\u201d and \u201cProces\u00adsors\u201d. The data pro\u00adtec\u00adtion reg\u00adu\u00adla\u00adtion sets a pur\u00adpose and a method on to how the data is han\u00addled. This requires that data pro\u00adtec\u00adtion prin\u00adci\u00adples are applied to soft\u00adware, sys\u00adtem, user inter\u00adface, and web page design process\u00ades from the begin\u00adning. The Con\u00adtroller or the Proces\u00adsor is respon\u00adsi\u00adble to imple\u00adment and to devel\u00adop tech\u00adni\u00adcal and pro\u00adce\u00addur\u00adal actions to ensure data safe\u00adty and GDPR compliance.<\/span><\/p>\n Doc\u00adu\u00adment your answers to at least these questions:<\/span><\/p>\n Cre\u00adate a doc\u00adu\u00adment from this check\u00adlist, that you and your employ\u00adees can refer to, so that every\u00adone knows what is includ\u00aded in the data pro\u00adtec\u00adtion reg\u00adu\u00adla\u00adtions. After hav\u00ading done this, you can use the doc\u00adu\u00adment as evi\u00addence to show that your orga\u00adni\u00adza\u00adtion is GDPR com\u00adpli\u00adant, if asked. Also make sure that third par\u00adties asso\u00adci\u00adat\u00aded with your com\u00adpa\u00adny have appro\u00adpri\u00adate GDPR poli\u00adcies and strat\u00ade\u00adgy in place.<\/span><\/p>\n For sup\u00adpli\u00aders, con\u00adtrac\u00adtors and oth\u00ader busi\u00adness part\u00adners, cre\u00adate or update exist\u00ading con\u00adtracts. Con\u00adfirm that these con\u00adtracts are in line with the require\u00adments of the data pro\u00adtec\u00adtion reg\u00adu\u00adla\u00adtion. Fur\u00adther\u00admore, check that your web\u00adsite and oth\u00ader means of col\u00adlect\u00ading cus\u00adtomer and mar\u00adket insights are in line with the regulation.<\/span><\/p>\nWhat can you do now to ensure GDPR compliance?<\/h2>\n
\n
\n
\n
\n
\n
\n
\n
GDPR Sum\u00adma\u00adry Document<\/h2>\n