Comprehensive assessment of GDPR compliance for your company’s websites and applications. Our experts will develop for you a plan of actions to reach compliance and therefore avoid high fines.
The GDPR (General Data Protection Regulation) is a new law of European Union, designed to enhance data protection for EU residents and provide a consolidated framework to guide business usage of personal data across the member states.
On the 25 May 2018, GDPR comes into effect, replacing the patchwork of existing regulations and frameworks, especially the 20-year-old Directive 95/46/EC.
The reach of the GDPR extends beyond the Directive it replaces. Your business must comply with GDPR if:
As a consequence, any website or application with any EU visitors, customers or users must comply with the GDPR. It is important to stress that EU Resident is anyone physically residing in the EU, even if they are not EU citizens.
Also one has to remember, that The GDPR defines personal data in rather broad terms. Even work email address can be considered as personal data, so the web form for such emails must be GDPR-compliant.
The penalty for non-compliance is up to €20 million, or up to 4% of the total worldwide annual turnover of the preceding financial year, whichever is higher.
There are also other consequences of GDPR violations, including loss of trust, damage to brand and legal fees associated with responding to a formal inquiry from Supervisory Authorities.
These public officers have both investigative and corrective powers. Supervisory Authorities are able to:
The GDPR provides many protections for individual rights, including:
To receive and accommodate requests relating to these rights, new processes and technological features may have to be created within your websites and/or applications.
Also, if your business involves regular and systematic monitoring of data subjects on a large scale or you are processing on large scale special categories of personal data, the special role of Data Protection Officer (DPO) must be appointed in your organization.
These new requirements are raising the bar way above current privacy practices for most companies, making the GDPR compliance very hard for smaller companies, lacking the dedicated law and IT teams.
We want to make sure that your website and/or mobile application is compliant with GDPR. In order to achieve this, we will:
We know that the GDPR is a complex regulatory law. Many smaller companies may be afraid that being compliant is an impossible task.
Have no fear – our experts will help you with all crucial pieces of the assessment, implementation, and maintenance of GDPR compliance.