GDPR - General Data Protection Regulation
GDPR, the EU General Data Protection Regulation is effective from 25 May 2018 and will impact every organisation which holds or processes personal data. It will introduce new responsibilities, including the need to demonstrate compliance, more stringent enforcement and substantially increased penalties.
What constitutes personal data?
The GDPR applies to ‘personal data’, meaning any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier. This definition provides for a wide range of personal identifiers to constitute personal data, including name, identification number, location data or online identifier, reflecting changes in technology and the way organisations collect information about people.
Why are the principles important?
The principles lie at the heart of the GDPR. They are set out right at the start of the legislation, and inform everything that follows. They don’t give hard and fast rules, but rather embody the spirit of the general data protection regime – and as such there are very limited exceptions.
Compliance with the spirit of these key principles is therefore a fundamental building block for good data protection practice. It is also key to your compliance with the detailed provisions of the GDPR.
GDPR and Hardcat’s Commitment
Hardcat’s success is built upon trust. Trust in our superior solutions, and trust that we will apply a high level of data protection and security in relation to the personal data of our employees, customers and partners.
The company adopts strict security principles for hosted data, and our ISO 9001:2015 JAZ-ANZ certified quality management system makes provision for privacy and information management.
Customer information is stored securely on Hardcat premises and information identifying individuals is stored strictly to identify the technical and administrative contacts at our customer organisations.