General Data Protection Regulation

The General Data Protection Regulation aims to set a new standard for the unification of data protection practices across the European Union, as well as to simplify the regulatory environment for international business. It will affect all companies that process personal data of EU citizens, independently from their location around the globe.

What are the main objectives of the General Data Protection Regulation?

  • Give control back to European citizens over their personal data;
  • Unify security regulations for all members of the European Union with the purpose of facilitating international business;
  • Strengthen cybersecurity infrastructure and reduce the risk for breaches;
  • Provide transparency regarding the collection and use of personal data.

What types of privacy data is protected by the GDPR?

  • Basic identity information: email, name, address, phone number and ID numbers
  • Digital data identification: location GPS, cookie data, IP address, and RFID tags
  • Genetic data about health
  • Ethnic and racial data
  • Biometric personal data
  • Sexual preference and orientation
  • Political opinions
  • Also, any data that permits to identificate a specific person.

What should my company do to comply with the GDPR?

One of the most important aspects for compliance with GDPR is the technological adequacy for data processing with the necessary aspects:

  • Encryption (anonymized) of the information.
  • Safekeeping of data in secure environments.
  • Traceability and the absolute control of the accesses to the data.
  • The right to oblivion.
  • The right to portability.

Recordia can help with all phases of GDPR compliance, from implementing the solution in your current infrastructure, to optimizing processes and controls to demonstrate and manage continuous compliance.

Contact Us

Complete the form to speak to a specialist

    *Required fields.