What is the General Data Protection Regulation (GDPR)? The role and impact of GDPR?
1. What is GDPR?
GDPR is the General Data Protection Regulation that has just been issued and comes into effect in the European Union (EU) countries. Starting May 25, 2018, this new regulation will protect data and privacy for EU citizens but also apply to many other countries in many ways. Because most large technology companies work multinational, the GDPR will affect what we use every day.
The purpose of this set of rules is to minimize the illegal exploitation of personal data, as well as to try to minimize damage if an incident occurs.
Many people are concerned that this regulation will curb the development of Internet services and applications. However, considering the recent incidents of personal information mining, the latest is the Facebook incident that revealed the information of 50 million accounts, applying GDPR is a must for all businesses, especially Internet service providers.
The term GDPR
Data: can be any information related to users, not just businesses, but specifically applied to each individual. This information can be their photos, names, addresses, email addresses.
Data controller: is an individual or organization that decides on the collection and processing of data on.
2. What is Personal Data?
Before we dig into the role and impact of GDPR, we need to understand what is Personal Data.
Data on appearance, physical: race, hair color, height, weight ...
3.The role of GDPR
The general data protection rule not only protects EU citizens but also applies to non-European countries. Because most companies work multinationals, the impact of GDPR covers every aspect of life with the speed of internet connection.
The main purpose of GDPR is to establish a consistent regulation between countries. Citizens of EU countries are strengthened, respected and protected their privacy in the internet environment. In addition, the administrative burden on the costs to comply with the law of companies is minimized.
European citizens, especially legal entities who collect and use personal data, are provided with 8 basic rights by GDPR.
- The right to be informed.
- The right of access.
- The right to rectification.
- The right to erasure.
- The right to restrict processing.
- The right to data portability.
- The right to object.
- Rights in relation to automated decision making and profiling.
All of these benefits provide personal data protection benefits for EU citizens.
4. The impact of GDPR
On the user side, GDPR protects the rights of all individuals using the services provided by the European-based company. This means that not only European residents are protected, but also those in other countries around the world.
For businesses located in the EU or providing services to European residents, the rules of GDPR must be clearly followed. It is a way of collecting personal information, what types of information are used and where user data is shared.
GDPR is a mandatory and extremely strict regulation that companies must follow. Non-compliant companies will be subject to a common penalty for the entire EU European Union. Particularly minor violations must bear a maximum of 10 million euros or 2% of annual revenue. For major violations, the fine is 20 million euros or 4% of the turnover.
Conclusion
Along with the development of technology, there are more and more data breaches. So the General Data Protection Regulation will protect data and privacy rights for individuals. The implementation is that GDPR obliges companies to comply with the standards for data collection and use. Therefore, it is important to understand what GDPR is and its role as well as its impacts on individuals and organizations.