general data protection regulation

general data protection regulation

On May 25, 2018, the European Union will update privacy laws for all member nations. How that will affect American businesses and individuals is pure speculation at this point.

You may be asking, “What does the European Union’s General Data Protection Regulation (GDPR) have to do with me or my business?” The answer may lie in the reality of how interconnected we have all become as rapidly-advancing technology compiles unimaginable amounts of personal data and moves it around the globe in the blink of an eye.

A more appropriate question may be, “How long will it be before the GDPR affects me?” That being the case, it is worth noting a few of the highlights of the GDPR.

  • Personally identifiable data may not be stored by any company without that individual’s “express consent.” (Expect this rule to be circumvented by statements like this: “By clicking “NEXT,” you indicate acceptance of our terms and conditions.”)

The inherent problem is that the average person does not read the fine print in the terms and conditions. It is reasonable to expect that those terms and condition will include a clause that says that “acceptance of our terms includes your permission for our company to retain your personal information.”

We Value Our Personal Information Most When It Has Been Stolen

The other inherent problem is that the individual or company on the customer end of the transaction is typically more concerned about completing the transaction than sharing their information. Sharing personally identifiable information is a secondary thought at best.

Five Rights Included in the GDPR

Technically, users/customers in the EU will have five rights of protection available.

  1. They may refuse to allow personal (or business) information to be processed.
  2. They may request access to the data a business has about them.
  3. They may request correction of inaccurate information.
  4. They may request deletion of personally identifiable information.
  5. They may transfer personally identifiable information to another entity.

Another question we ought to be asking about the security of our personally identifiable information, is “How do we know that companies are compliant and our information is protected?” The answer is that we do not. Laws are fine, but they must be enforceable to be effective.

Tech Sentries believes that the primary responsibility for guarding your technology and your data is you. However, we understand that no amount of legislation will protect your data, and we also understand that you cannot protect your data without the latest-greatest-up-to-date security measures. Ensuring your protection is our business. We are your security professionals.

Tech Sentries is as concerned about your computer system security as you are. That is why Tech Sentries is always on duty. Contact us today to learn how we can help you “GUARD YOUR TECHNOLOGY” (843-282-2222).