The GDPR and what does it mean?

Author: Simone de Visser

The GDPR will supersede the Data Protection Directive across Europe. The GDPR ensures that customers get more possibilities to stand up for themselves when their personal data is processed. The existing privacy rights, those from the DPD, will be expanded and improved with two new privacy rights on the 25th of May and merged into the new GDPR.

In this blog two new privacy laws will be explained.

“Are your means of communication ready for the new privacy laws? Get in touch for more information!”

The GDPR entails:

  • Portable copy of data
  • Erasure of data
  • Transparency and modalities
  • Information and access
  • Rectification and erasure
  • Right to object against automated decisions

So, which two privacy laws are new?

Let’s start with the first new privacy law, the portable copy of data. This new law gives the right to transfer personal data. This means that people have the right to receive personal data an organisation has from them, for example for personal storage purposes. Think about requesting GPS information in a travel app or requesting the search history in an app or website, requesting a contact list in a social app, or information about different purchases ever made on a website.

This law is also mandatory for all companies who have to transfer personal data to other organisations. Think about customers who want to sign out from a social network and want to sign-in in another social network. Or data regarding condition, movement, calorie-intake on an app or website that wants to connect or link this to a different organisation. Your organisation is responsible for transferring this data to another organisation and keep in mind that this is mandatory following the new privacy laws.

“Does your website enable the accessing of personal data by customers and visitors? With the implementation of the GDPR this is mandatory!”

What about the law of erasure of data?

The law for erasure entails that organisations are obliged to erase personal data when a customer asks for this to happen. This law is similar to an already existing law, namely the law for correction and removal. However, the law for erasure of data is no longer limited to the removal of incorrect data, incomplete data or irrelevant data. Despite this new law being more relevant, it is not always legitimate. Only in the following situations:

  • When an organisation does no longer need personal data
  • When a customer revokes his permission
  • When a customer objects against process of personal data
  • When there are no legal grounds for process
  • When an organisation is legally obliged to erase data after a set period of time
  • When a customer is younger than 16 years old and the data is collected through an app or website
“Did you know that saving IP-addresses also belongs to the collection of personal data? Can your company keep doing this with the implementation of the GDPR? And if so, did you already prevent your website from the risk of saving personal data?”

What does this mean for your organisation?

Starting May 25th, 2018, customers can request to receive all personal data online, send to other organisations or remove all saved personal data. The execution of these processes should be easy, digitally and clear for your customers! Keep in mind that your data is processed from a certain structure and you have to respond to their requests within one month. Your organisation can prepare for these new laws by having an app developed with which customers can download their data or make a connection between your website or application and that of another organisation.

What are you going to do?

We can hear your brains turning, what a load of information…now what? In what way is this important for me? And what should I change or how can I best implement these changes? This while we have not even told you everything yet. Besides these two laws, the implementation of the GDPR also means that there are new laws for the development and collection of personal data and this will thus affect your current website, applications, and marketing. In our blog, we delve deeper into the steps that you can take to get ready for the implementation of the new privacy law!

“This blog has been written by Simone de Visser, marketeer at Get Hooked. Want to know more about this subject? Email us at info@gethooked.nl or call us at 085-7470031”

Excited &
ready for impact?

Send us a message
or call us on +31 85 747 00 31!