GDPR, an acronym for the General Data Protection Regulation, is the new EU regulation regarding the collection and treatment of personal data, which came into force on May 25th, 2018.
The GDPR defines and controls the rights of all EU and EEA residents in relation to the handling of their personal data. It also addresses the export of personal data outside of these areas. Organizations must create a structured process for the treatment of data and the protection of privacy, which also includes new roles as appropriate, and defines the responsible people, together with their duties.
Any Infringement of the GDPR provisions is subject to very significant penalties of up to 20 million Euro, or 4% of the preceding financial year’s total worldwide turnover, whichever is greater.
The Contactlab platform makes functionality available that, if used appropriately, enables the Data Controller to respect the principles of the GDPR and exercise the Rights of the Data Subject.