What Is GDPR?

-

What Is GDPR?


Following my earlier blogs with considerations on GDPR the questions l have been asked by many is what is this GDPR all about.
GDPR is the General Data Protection Regulation. It is a new piece of European legislation that was finally adopted on 27th April 2017 after several false starts. It will come into force on 25th May 2018 across Europe, and it will apply not only to any organisation situated in the EU, but also to any organisation/business that processes the personal data of EU citizens regardless of where they are situated. 
Where existing laws only apply to data controllers (the owners of the data), GDPR also applies to organisations that process data on behalf of data controllers. 

What about Brexit?

GDPR will apply in the UK regardless of Brexit. In the Queen’s Speech recently her majesty said: 
A new law will ensure that the United Kingdom retains its world-class regime protecting personal data… 

So, what is GDPR ?  

GDPR takes many of the concepts under existing privacy laws and enhances and extends them. Existing data subject rights, such as the right to receive a copy of the data and the right to rectification are extended for example with shorter time limits for compliance. 
There are also a set of new data subject rights such as the right to erasure (not quite as broad as the much-discussed right to be forgotten), and data portability. 
Other big changes include a right to self-report any breaches, special rules for processing children’s data, new categories of sensitive data and the requirement to give specific information to individual data subjects about what will happen to their data. 

The cost of non-compliance  

The supervisory authorities have powers under GDPR to order organisations to pay compensation to data subjects. 
They also have the power to administer substantial fines against both data controllers and data processors. The numbers are high (maximum being the higher of 4% of global turnover or €20m) and so have grabbed attention. However, whilst the size of fines is intended to be “dissuasive” the authorities are also required to take into account the behaviour of the organisation and to fine accordingly. Therefore l would recommend you and your organisation/business take reasonable steps to have the correct processes in place.
Therefore it is right and proper that our reaction to the legislation should be to take a broad risk-management approach and to invest in our security. 

The cost of compliance  

As you start looking into GDPR you will find that it will impact more of your organisation than you originally thought . It will also take you longer to get compliant than you can imagine. This article will undoubtedly raise more questions than it has answered, but what is clear is that you will have to make investments in your security systems and processes and it is key to ensure that these investments are made in the right areas. 

Comments

Post a Comment

Popular posts from this blog

How to Query Microsoft Dataverse Data using SQL from Power BI or SSMS

-
Image
Microsoft in recent months made available a much requested feature by many with the additional way to access read-only data in Microsoft Dataverse. The TDS endpoint for Microsoft Dataverse allows read-only access to Dataverse for reporting and analytics requirements. The Tabular Data Stream (TDS) Protocol endpoint functionality is managed by an administrator with access to the Admin center. This feature becomes a game changer as many Microsoft customers who required this feature and often went down the root of the Data Export Service can now start exploring this capability Prerequisites: To get started using this feature, you will need to ensure that TDS endpoint is enabled as this is required to be able to use this feature via Power BI or SSMS. Sign into the Power Platform Admin Center :( https://admin.powerplatform.microsoft.com/environments ), and then select the appropriate sandbox environment. Note: Its always good practice to test new features in a Sandbox Environment Validate t
Read more

Users Unable to See Flow Button and run On Demand workflows in Dynamics 365 CE

-
Image
Overview. Dynamics 365 CE provides functionality to automate business processes in the background or on a click of a button requiring a user to initiate this automation. In this blog post the scenario is focused on an issue a user may experience while using dynamics 365 CE on automation which is initiated by a user looking to use an On Demand. This automation triggered by a user is called an on-demand workflow. Problem When a user goes into Dynamics 365,  they are unable to see or run a workflow/flow which may have been created. So how do you resolve this issue? Steps to Resolve System Settings 1.a) Login into the Power Platform Admin center ( https://admin.powerplatform.microsoft.com/environments ) and Select your Environment name > Settings  > Behavior . At this point validate that the " Show Power Automate on forms and in the site map " is toggled  1. b) Validate that the setting, you will need to navigate to Settings > Administration > System Settings >
Read more

How To Deploy Dynamics App For Outlook (On-Premise)

-
Purpose The purpose of this post is to set out the direction, steps,scope, and implementation approach for the Dynamics Outlook App configuration item Audience This post is intended for Technical Teams/Administrators looking to implement the Dynamics Outlook App for On-premise environments. Pre-Requisites Dynamics 365 with IFD Configuration Dynamics 365 Update 8.2.2.112 (KB4046795) Minimum ADFS requirement ADFS 3 upwards due to OAuth endpoint Minimum Exchange 2016 or 2013 with Cumulative Update 14 or later Office 2016 *Recommended, Office 2013 *Compatible Supported browsers for Outlook on the web Dynamics 365 App for Outlook can be used with Outlook on the web on the following browsers: Internet Explorer 10, Internet Explorer 11, or Microsoft Edge The following configuration is supported: Protected Mode is enabled for Internet security zone. To enable Protected Mode: in IE 10 or 11, go to Tools > Internet options > Security tab > Internet. Protected Mode
Read more