What is GDPR and what does it mean for you?
You may have heard, but not been informed on the details of GDPR (General Data Protection Regulation), an EU Regulation protecting the individual from companies who may be storing one’s personal data. In May 2015, the EU outlined a strategy to create a digital single market, and GDPR has been a core element of the development, which will take effect May 25, 2018.
GDPR will replace the 1995 EU Data Protection Directive (DPD), a former data protection act for an individual’s stored data. Here are four most important changes you should know about:
- For all of the data we collect, we first have to make sure that we have a lawful reason to process it. If we are relying on your consent, then in the way we ask for your consent we also need to make our communication clear so that your consent is freely given, specific, informed and unambiguous. It is our job to make sure that you are aware of what you consent to before we can process your personal data.
- The “Right to be Forgotten”, which allows you to ask us to delete all of the data we hold on you at Agile Ageing Alliance. However, If we have data to fulfill a legal obligation we can refuse to erase it.
- The “Right to Data Portability”, which allows you to ask for your data held at Agile Ageing Alliance to be collected in a common format and given to you. Which also, like the point above doesn’t apply to data we hold by consent or to fulfil a contract.
- GDPR is enhancing the Access Request right as well. We will now not be able to charge for the processing of your data requests, unless we can demonstrate that the costs will be too extensive without doing so. We will now only have 30 days to complete the data collection process. Though we still reserve the right to deny access requests if they prove excessive.
What does this mean for you?
Your data is protected more now than ever. You can also ensure that within the EU your data is in safe hands. If you ever feel that you would not like to give your data, simply don’t. If you ever authorise the collection of your data, and then decide to revoke a company’s access to that data at any time, you can as well. You remain in control, and that’s the best part.
Our commitment and your rights
The Agile Ageing Alliance is committed to ensuring the security and protection of personal information and the data that we process. While we have always had a robust data protection policy in place, which complies with existing data protection legislation, we recognise your need to know that your personal information is secure.
This is why we will continue to update our policy in line of the introduction of GDPR. Our preparations have included a full information audit, updating of data breach procedures, data protection impact assessments and an affirmative opt-in for any direct marketing. As well as updating our privacy policy.
How can I request my information?
As of 25 May, 2018 we are fully compliant with GDPR. If you would like to exercise your right to access any personal information we hold about you, including the source of this data, what it includes and how we use it please get in touch, and we will be sure to assist.
More Information on GDPR
Full text of the GDPR here
The EU’s GDPR website