What is GDPR?
General Data Protection Regulation has become one of the most important aspects of privacy and data protection. With all these stringent rules in place, you need a GDPR-compliant content collaboration platform.
Classes of protected Data
Personal information includes a broad expanse of data types- ID numbers, health data, personal beliefs, ethnicity, and any other information an organization requires – for smooth running. FileCloud lets you set up different protocols to safeguard such data. GDPR applies to all companies within the EU and to any company dealing with EU citizen data overseas.
The 7 Principles of GDPR
- Lawfulness, Fairness, and Transparency- The reason for personal processing data is of primary importance. The terms have to be laid out in a clear contract. This is for lawfulness. Fairness is when you ensure that the data is lawfully collected and is not misused in any manner. Ascertaining why and how such information is utilized amounts to transparency.
- Purpose Limitation- Data collected has to be used only for its intended purpose. If you decide that the collected data may be used for another purpose, then the same must be communicated explicitly to the person involved, and permission sought again. The older consent cannot be used again.
- Data Minimization- Asking for only absolutely necessary information. The smallest amount of data required for you to process your request – is the basic tenet of minimization.
- Accuracy- This principle requires updating, editing, or destroying incomplete or incorrect data. This calls for basic auditing capabilities.
- Storage Limitation – Collecting the right data won’t suffice. Specifying the exact time period for which the information collected will be stored and utilized, after which the data is anonymized, is vital.
- Integrity and Confidentiality- Collected data must be secure from any data loss (accidental or otherwise), breach, destruction, and other threats.
- Accountability- Just saying you are GDPR compliant does not work. You will need to prove it to a regulatory body. Documenting everything helps a lot and will save you a lot of trouble. It also reinforces trust all around.