GENERAL DATA PROTECTION REGULATION (GDPR)
Who is GDPR this for?
1) Those companies that handle personal data of EU Nationals as a core business activity, such an BPOs wrking for EU based companes directlyor indirectly or companies who employs EU Nationals.
2) Companies that deal mainly with personal data of their employees or have lists of clients and customers based out of EU.
3) eCommerce companies that store personal data of EU Nationals as a part of going online businesses.
What is personal data?
Personal data is any information that relates to an actual living individual. This includes, for instance: name, surname, home address, e-mail address or location data from the map on your mobile. Typically, this would be the case of the personal data you might hold on your employees, your clients or your suppliers.
This would need deep analysis to understand if any organisaiton stores such data, directly or indirectly. Expertise would be needed for this assessment.
Some key principles for GDPR Compliance.
Collect personal data with clearly defined purpose, and don’t use them for something else (if you tell your clients to give you their email so they can get your new offers or promotions, you can’t use this email for anything else or sell it to another business).
Don’t collect more data than you need (if you do home delivery, you need e.g. an address, a name on the buzzer, but you don’t need to know if this person is married or single) - simply be mindful of the personal data under your control.
For all your requirements of GDPR Compliance advisory, you all you have to do is post your Request of Quotation (RFQ). All our registered Professionals and service providers can access those and respond.