By now you might have heard or stumbled across articles about the "General Data Protection Regulation" (GDPR) that is coming into effect May 25 2018.
http://ec.europa.eu/justice/smedataprotect/index_en.htm
The General Data Protection Regulation is a regulation in EU law on data protection and privacy for all individuals within the European Union.
It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business.
Frequently Asked Questions
What is GDPR?
This Regulation lays down rules relating to the protection of natural persons with regard to the processing of personal data and rules relating to the free movement of personal data.
This Regulation protects fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data.
The free movement of personal data within the Union shall be neither restricted nor prohibited for reasons connected with the protection of natural persons with regard to the processing of personal data.
How do Businesses benefit from GDPR?
The GDPR applies to all EU organisations – whether commercial business, charity or public authority – that collect, store or process EU residents’ personal data, even if they’re not EU citizens.
The GDPR applies to all organisations located within the EU, whether you are a commercial business, charity or public authority, institution and collect, store or process EU citizen data. It also applies to any organisation located outside of the EU if they also collect store or process EU citizen data.
What is considered personal data?
The GDPR defines personal data as any information or type of data that can directly or indirectly identify a natural person’s identity. This can include information such as Name, Address, Email, Photos, System Data, IP addresses, Location data, Phone numbers, and Cookies.
For other special categories of personal data, there are more strict regulations for categories such as Race, Religion, Political Views, Sexual Orientation, Health Information, Biometric and Genetic data.
What are the penalties for non-compliance?
Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million. This is the maximum fine that can be imposed for the most serious infringements.
There is a tiered approach to the fines whereby a company can be fined 2% for not having their records in order (Article 28), not notifying the supervising authority and Data User about a security breach or for investigating and assessing the breach.
make your phpBB forum GDPR compliant:
use BBgdpr: marketplace.php?mode=view&item_id=69
Additional Readings:
Here's a nice write up from a great software company you might even have used its products before,
Acronis:
https://www.acronis.com/en-us/articles/gdpr/
From Wikipedia:
https://en.wikipedia.org/wiki/General_D ... Regulation
Here's some posts from the phpBB community:
https://www.phpbb.com/community/viewtop ... #p14894671 and: https://www.phpbb.com/community/viewtop ... &t=2419821
Feel free to discuss it below. Your understanding, concerns and what you think about this matter and how might affect your forums.
http://ec.europa.eu/justice/smedataprotect/index_en.htm
The General Data Protection Regulation is a regulation in EU law on data protection and privacy for all individuals within the European Union.
It addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business.
Frequently Asked Questions
What is GDPR?
This Regulation lays down rules relating to the protection of natural persons with regard to the processing of personal data and rules relating to the free movement of personal data.
This Regulation protects fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data.
The free movement of personal data within the Union shall be neither restricted nor prohibited for reasons connected with the protection of natural persons with regard to the processing of personal data.
How do Businesses benefit from GDPR?
Build stronger customer relationships and trust
Improve the brand image of the organization and its brand reputation
Improve the governance and responsibility of data
Enhance the security and commitment to the privacy of the brand
-
Create value-added competitive advantages
The GDPR applies to all EU organisations – whether commercial business, charity or public authority – that collect, store or process EU residents’ personal data, even if they’re not EU citizens.
The GDPR applies to all organisations located within the EU, whether you are a commercial business, charity or public authority, institution and collect, store or process EU citizen data. It also applies to any organisation located outside of the EU if they also collect store or process EU citizen data.
What is considered personal data?
The GDPR defines personal data as any information or type of data that can directly or indirectly identify a natural person’s identity. This can include information such as Name, Address, Email, Photos, System Data, IP addresses, Location data, Phone numbers, and Cookies.
For other special categories of personal data, there are more strict regulations for categories such as Race, Religion, Political Views, Sexual Orientation, Health Information, Biometric and Genetic data.
What are the penalties for non-compliance?
Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million. This is the maximum fine that can be imposed for the most serious infringements.
There is a tiered approach to the fines whereby a company can be fined 2% for not having their records in order (Article 28), not notifying the supervising authority and Data User about a security breach or for investigating and assessing the breach.
make your phpBB forum GDPR compliant:
use BBgdpr: marketplace.php?mode=view&item_id=69
Additional Readings:
Here's a nice write up from a great software company you might even have used its products before,
Acronis:
https://www.acronis.com/en-us/articles/gdpr/
From Wikipedia:
https://en.wikipedia.org/wiki/General_D ... Regulation
Here's some posts from the phpBB community:
https://www.phpbb.com/community/viewtop ... #p14894671 and: https://www.phpbb.com/community/viewtop ... &t=2419821
Feel free to discuss it below. Your understanding, concerns and what you think about this matter and how might affect your forums.
- Contact me Via PM or e-mail for Custom work
- Deploy an NVMe server in 30 seconds. Sign up with my link and get $50 in credit.
- Get a custom professional email (@yourcompany.com), 24/7 support, 30GB of storage, and more. Google Apps For Business
- Follow me on ThemeForest to get the latest updates ThemeSplat
- Follow me on GitHub SiteSplat
- Deploy an NVMe server in 30 seconds. Sign up with my link and get $50 in credit.
- Get a custom professional email (@yourcompany.com), 24/7 support, 30GB of storage, and more. Google Apps For Business
- Follow me on ThemeForest to get the latest updates ThemeSplat
- Follow me on GitHub SiteSplat