What is GDPR ?
Well, you might not have heard of GDPR. It was implemented by the European Union and it came into force on May 25th 2018. Kezako? GDPR is the General Data Protection Regulation.
First, one needs to know that these new rules apply to all members of the European Community, and it concerns the collection of personal data that transit through the digital. A personal data allows to identify a physical person, name, picture, address, phone number, computer login credentials, a fingerprint, a voice recording, a social security number, e-mail, etc.
Photo par Alex Knight sur Unsplash
What’s changing with the GDPR?
An enterprise, or association, can’t collect your data anymore without you being informed and without your agreement. You must also be able to consult and/or retreat the data for which you have given your agreement, at any time. You must be able to do it in a simple way. Thus a company must put into place the necessary measures to implement these new rules.
For the ones who collect personal data, the main measures of the GDPR are as follow :
- To minimise the amount of data collected by compiling only the necessary data for the realization of the final processing.
- To communicate about the usage that will be made of the collected data.
- To collect the express consent of the persons concerned.
- To give to the persons concerned the right of access and the right of portability of the collected data. A person must be able to consult, modify, transfer or erase the totality of his personal data.
- To inform the person concerned in case of violation or deterioration of his data. The structure collecting the data has the obligation to secure it.
I summarized here the essential notions concerning the GDRP. If you wish to read more I invite you to google “GDPR”.
error: Content is protected !!