What is GDPR?
Last modified: February 23, 2020
GDPR is an EU legislation that determines the collection, storage and use of data of users from EU countries. While this law is specific to the EU, any organization across the world, that has users from the EU, needs to follows the rules as it allows for prosecution of website owners outside of the trading bloc.
The GDPR regulations split the requirements of the data protection into three areas: collection, storage and use.
Firstly, websites should only collect information that they require for the efficient delivery of their service/products. Therefore, if you don’t need to collect the user’s email address or telephone number you shouldn’t collect this information.
Businesses should ensure that all data collected is stored in a secure way that is safe from unauthorized access. If there is a breach in the security and storage of the company’s data, then customers need to be informed within a reasonable time.
Users also have the right to request that information be deleted. This should be done in a timely manner.
The use of data should also be associated with normal processes of delivering services or products to customers. This might include delivering marketing materials. However, the customer must know that their data was taken for this purpose.
* This button will show the rest of the post and open up an offer from a vendor