The EU's General Data Protection Regulation
D ane & Lion is a 360-degree digital solutions agency that is well-equipped to help you with all of your digitalization needs. As such, our team of marketing experts work closely on a daily basis with data specialists, developers, and jurists to ensure that all of our work and all of our clients are 100% compliant with the GDPR.
What is GDPR?
The European General Data Protection Regulation, known colloquially as GDPR, is arguably the most important change made to data privacy regulation in decades. It was adopted on April 14, 2016 and entered into force throughout the European Union (EU) and the European Economic Area (EEA) on May 25, 2018. GDPR replaces the severely outdated and insufficient 1995 Data Protection Directive, which was adopted during the early stages of the internet.
GDPR seeks to provide European citizens with more control over their personal data with the goal of helping both citizens and businesses alike utilize the many benefits provided by the digital economy. The regulation seeks to achieve this by means of simplifying the regulatory environment and providing similar obligations for all businesses.
Companies and organizations who fail to comply with the GDPR are to be sanctioned with sizable fines for their breach. The size of the fine is dependent on a variety of factors such as the severity of the breach as well as the size of the company and can be as large as €20 million or the equivalent of 4% of the company’s annual global revenue.
What is more, GDPR affects companies throughout the world irrespective of whether or not they are located in the EU insofar as they ‘deal with Europeans’. A company can be said to ‘deal with Europeans’ when it sells goods and services to or stores personal data about Europeans. Thus, GDPR has reformed the way in which data is handled worldwide and across every sector: spanning from marketing and consulting to healthcare, insurance, banking, and far beyond. Every company that is then bound by the GDPR must follow the requirements laid out therein whenever they are processing data. In practice, this means that the company is required to have a legal basis for processing all its data.
Dane & Lion protects you and your clients
We implement new policies of compliance with GDPR by providing both IT and legal assistance:
Audit and Evaluation of current compliance.
Handle all data and service agreements, with customers and third parties.
Create a transparent roadmap illustrating the use of data.
Drafting and applying security, cookie, privacy, and data policies and systems.
Documentation of systems, risks and workflows of personal data as well as compliance progress.
Assess and optimize the protection of the website and its visitor’s data.
In case of a breach, provide a DBIRP (Data Breach Incident Response Plan).
Why the need for GDPR?
D ata has become an integral and indeed vital part of modern life as we know it. Data brings with it a plethora of opportunities – positives for both the individual and for companies at large – but there are also risks and potentially negative repercussions that inevitably follow.
The need for GDPR is evident. Nonetheless, the GDPR is by no means perfect and it provides many challenges and worries for business owners around the world – small and big alike.
With that being said, it also comes with opportunities for those companies who take a stand to fight for the individual.
Companies that manage to convince clients that they care about data and about data protection in general as well as companies that are open about how they use data and for what purposes, are likely to increase their trustworthiness and ultimately also customer loyalty.