By now, we don’t have to harp on the importance of digital security.
With the General Data Protections Regulation (GDPR) coming into effect May 25, digital security will transcend buzzword status to become cemented legislation.
Our GDPR “CliffNotes” details the need-to-know basics of the new measures being welcomed with open arms by all concerned with user privacy. But what exactly does this newfound security standard entail?
What protections will GDPR ensure?
Here are the upgrades to expect on the data privacy front:
- Data protection: Your data will be more securely stored and the extent to which your info is processed will be as limited as possible. To dive into some lingo:
- “Protection by design” requires organizations to implement certain technical security features into the very design of their processing methods.
- “Protection by default” requires that – by default – personal data only be used if necessary for the specific processing purpose at hand.
- Data portability: You maintain the right to take the data existing under one “data controller” (i.e. any organization) and transmit it to another if you so choose. This data should be provided in a “structured, commonly used” format (think: Excel .CSV file).
- Right of access: You retain the ability to retrieve your information with ease and full transparency regarding that data’s processing. You also have the right to confirm whether an organization is processing any data concerning you (and, naturally, you can find out what it is)
- Right to erasure: The “right to be forgotten” allows you to choose to halt the processing of your information and eliminate your data from an organization’s system. This could come up if they no longer need your data, they unlawfully process it, or you simply choose to revoke your consent.
- Breach notification: News of data breaches is bad, but news of companies trying to cover them up are even worse. Now, in the event of catastrophe, at the very least companies will alert you within 72 hours.
- Data protection officers: You’re not on your own in tracking your data us: knowledgeable individuals will be assigned to keep an eye on an organization’s compliance.
TL;DR – Data privacy measures will be stricter and more thoroughly enforced. You have more explicit rights concerning your data… and hopefully, you’ll be able to have some more peace of mind.
… But there’s the rub! GDPR will certainly help protect you, but it’s not a foolproof security system. Especially for foolish behavior.
So don’t sleep on security measures, simply expecting GDPR to save the day. Smart practices are vital to ensuring the safety of your data.
For more on steps you can take and caution to heed, check out WIRED’s incredibly helpful “Guide to Digital Security.”
What’s next for data privacy?
GDPR will apply to all companies employing forms of data processing, regardless of the purpose.
At Evercontact, our entire service is predicated on users’ trusting us with their data. As such, we fully support GDPR laws and will be pro-actively ensuring our compliance is clear and known As May 25 draws nearer, we will continue to post GDPR insight and release our own security measures.
If you have any questions about how we store data or any of our data privacy measures, don’t hesitate to reach out to us at firstname.lastname@example.org
Also published on Medium.