GDPR – Let’s implement

General Data Protection Regulation (GDPR) is applicable as of May 25th, 2018 in all member states of European Union. It can be a daunting task to make your organization GDPR compliant. We will take you on your GDPR implementation journey from A-Z.

How we see GDPR

GDPR is like a bank locker. Customers (users) have full control on their belongings (data) in their locker. Bank (Data Controller and Processor) need to provision customers’ right and protect customers’ belongings.

Provision for users’ rights (what can user ask for)

1. No alt text provided for this image
2. Give consent – opt-in with the duration until when his/her record will be kept
3. Give consent for what all data can be collected
4. Give consent for how data will be processed
5. Request to change any data item
6. Request to delete/forget any data item
7. Request to delete own record

Protect users’ data

1. Authorized employee/contractor has access to authorized information for authorized purpose
2. Only authorized employee/contractor can access only authorized information and for only authorized purpose
3. Log of all access and all configuration changes
4. Detect any deviation from point 2 and create a permanent event (security incident) for that deviation
5. Report data breach incidents to authorities and user
6. Audit of above process

What are you looking for?

Are you looking to implement GDPR? We can help implement from planning to implementation.

Are you looking to learn about GDPR? We will post multiple articles to help you in learning or implement GDPR on your own.

Question or comments – We would love to hear from you.

About VisionFirst Technologies Pvt. Ltd.

We are a group of researchers and practitioners of cutting edge technology. We are AWS Registered Partner. Our tech stack includes Machine Learning, offline/2G tolerant mobile apps, web applications, IOT and Analytics.