Is anyone protecting our data? We are sharing our data with many companies and many people for different reasons. It’s better to have someone protect our personal data and letting us know the purpose for which our data is being used.
GDPR Does.
What is the General Data Protection Regulation (GDPR)?
It’s a set of rules created by the European Union that needs to be strictly followed by anyone collecting and processing personal data from European continent countries.
GDPR sets forth fines of up to 10 million euros, or, in the case of an undertaking, up to 2% of its entire global turnover of the preceding fiscal year — whichever is higher — for violations.
Other than personal data, GDPR imposes strict laws on Genetic data, Children’s data, etc.
GDPR gives individuals freedom-
· to obtain information from the companies/individuals regarding the processing of your personal data
· to inform company/companies to erase your data
· to know how long the companies would store your data
· to know to whom the data of yours have been shared with
There are four key terms in GDPR: Controller, Processor, Data Subject, Supervisor Authority.
Controller: The one (company, individual etc) who collects the data directly from the data subject. Ex: Bank
Processor: The one who follows instructions given by the controller to process data shared by the controller. Ex: IT Company maintaining Bank data.
Data Subject: An individual who owns the data, Ex: Bank Customers.
Supervisor Authority: Established by European member states to oversee the administrative work of the GDPR.
From 25 May 2018, European continent countries started to follow GDPR. It is not only applicable to the European continent but also for companies outside of Europe working for European continent countries.
Before any data that is shared from countries outside of the European Union, the European Union will take a call based on whether the recipient county provides an adequate level of protection or not.
So far European Union has a list of countries who have promised adequate level of protection, they are Andorra, Argentina, Canada (commercial organisations), Faroe Islands, Guernsey, Israel, Isle of Man, Japan, Jersey, New Zealand, Switzerland, Uruguay and the United States of America (limited to the Privacy Shield framework).
Hoping India will soon be among the trusted countries list.
