Difference between revisions of "General Data Protection Regulation (GDPR)"

From SmartWiki
Jump to: navigation, search
(Created page with "{{ Banner-UnderConstruction }} =Overview= One of the largest aspects of SmartSimple's privacy configuration is our compliance with the '''General Data Protection Regu...")
(No difference)

Revision as of 10:08, 26 August 2019


Construction warning.png Please note that this page is currently under construction. There is more information to come.


Overview

One of the largest aspects of SmartSimple's privacy configuration is our compliance with the General Data Protection Regulation (GDPR). The GDPR is an EU legislation that is designed to protect the fundamental rights of citizens and their personal data. This law ensures that people not only know where their private data is kept, but it also holds organizations accountable and transparent in their practices.

EUGDPR.org lists the key changes brought about by the enforcement of the GDPR, which began on May 25, 2018. As a directly b inding regulation, the GDPR stipulates that controllers of personal data must put in place appropriate technical and organizational measures to implement its data-protection principles.

This article describes which features and policies SmartSimple has implemented into our platform to help you comply with the GDPR.

Feature Descriptions and Requirements

Consent and Compliance Features

These features are catered towards managing your data subjecft's consent, as well as managing your overall compliance.

Feature Description GDPR Regulation
Personal Data Field (Indicator)

This will indicate whether a field contains personal data and add a processing description.

This allows you to quickly differentiate between personal and non-personal data fields, and allow internal and external users to view the description. Adding an indicator makes it easier to ensure that all personal data fields are accounted for when erasing personal data, adding policies, enabling pseudonymization, or searching/reporting.

  • (5)(2) Accountability
Data Categories

Organizing the data you collect into data categories such as the following: Contact Data, Financial Data, Highly Sensitive Data, etc.

This feature will allow you to tailor highly specific security and data retention policies to different classes of data. You are able to apply any number of policies to a category.

Personal Data Management Features

These features are focused on managing your personal data effectively and automating your data governance model. To make the most use of the following features, we recommend identifying all personal data fields in the system and organizing them into data categories.