GDPR stands for General Data Protection Regulation. The purpose of GDPR is to support E.U. citizens right to protection of their personal data. GDPR accomplishes this by allowing individuals to understand what information organizations have on file for them, and giving individuals the power to rescind or control access to their data.
GDPR is used for any organizations where the controller (i.e., the one who decides which data to process, why, and how) is established in one or more E.U. member states, goods or services are offered to individuals who may be located in the E.U. (natural persons only, not legal entities), and/or E.U. individuals’ behaviors are monitored. So basically, if you operate in the E.U., if you market to E.U. citizens, or if you monitor E.U. citizens behavior, then you must adhere to the standards set by GDPR.
GDPR sets standards for how companies should process the personal data of citizens of the European Union.
Data mapping is a good starting point when beginning your journey towards GDPR compliance. This practice allows you to identify what personal data you are collecting as well as how you’re collecting, using, protecting, and storing data, This allows you to compare your current practices to GDPR standards to see where you need to make adjustments.
If you need help with setting your company for GDPR compliance, Red Lion can help. Our GDPR services will assign you a dedicated GDPR compliance professional to help guide you and your organization through the process of achieving GDPR compliance.
Do you still have questions regarding GDPR? Red Lion GDPR services will set you up with a compliance professional that can help you to understand and comply with GDPR, regardless of complexity.Contact Us Today