EU General Data Protection Regulation

Christopher Beach
   |
February 28, 2018
   |
White Papers

Background and Scope

A new EU data protection framework will take effect on May 25, 2018, that supersedes all prior regulations. The General Data Protection Regulation (http://www.eugdpr.org/) (GDPR) will replace the current directive 95/46/EC and will be applicable in all Member States. In its simplest form, GDPR is intended to strengthen and unify data protection regulations for individuals within the European Union (EU).

Servicengine recently published a Security Management and Strategy whitepaper with a detailed plan and approach to help our clients meet the compliance deadline. The document highlights the most significant aspects of GDPR, such as extending jurisdiction to companies outside the EU and the potential for substantial financial penalties. All of our clients doing business in the EU should be aware of the most critical requirements of the GDPR:

  • Responsibility and Accountability – Businesses are responsible for protecting the personal data within their control
  • Data Protection by Design– Security must be inherent and incorporated into the system design
  • Consent – Valid consent must be received to collect personal data
  • Pseudonymization – Personal data should be obfuscated or encrypted and the keys stored separate to the data
  • Recording – Records must be maintained for all processing activity involving personal information
  • Data Portability – Individuals can have their personal data transferred from one system to another
  • Right to Erasure – Under certain circumstances, individuals can require that personal data be permanently deleted
  • Notification – In the event of a breach, data controllers are required to notify the Supervisory Authority without delay

These are fundamental elements of the regulation’s purposeful treatment of personally identifiable (PI) data:

  • Controlling the processing and distribution
  • Restricting the collection and storage
  • Transparency on management and usage
  • Limiting the storage duration to a specific amount of time
  • Allowing corrections or the request to be deleted
  • Certifying the protection by use of acceptable security methods
Request a Copy
Picture of Christopher Beach

Christopher Beach

Christopher graduated from Quinnipiac University in 2012 with a Bachelor’s degree in Computer Information Systems. Today, Christopher is the Technical Support Manager, providing day to day support for internal and external Partners He has also been involved in the ISO27001 group working towards Servicengine’s certification project.
All Posts

Servicengine News

Picture2

Bridging the Technology Gap in Global Mobility

How One Lean Team Modernized Their Program With A Centralized Platform For an industry built on movement, global mobility has been surprisingly slow to move on from spreadsheets. Many programs are still run through manual trackers, shared drives, and inboxes, …

Read More
Charts and Reporting

It’s 10PM, Do You Know How Much You’re Spending?

In global mobility, the only thing more unpredictable than relocation and assignment costs is realizing too late, that they’ve spiraled out of control. For HR leaders and mobility professionals, managing relocation budgets isn’t just about tracking expenses. It’s about forecasting …

Read More
Budget

How to Avoid Relocation Surprises (and Keep Your Sanity)

Let’s be honest, relocations are messy. Even with the best intentions, they can spiral into a logistical nightmare, with missed deadlines, blown budgets, compliance headaches, and frustrated employees. And when things go sideways, guess who gets the call? HR. If …

Read More
More Blog Posts

Request a Relocation Software Demo

We will learn about your organization and show you how our relocation software solutions can be customized to your relocation and mobility processes.

Request Demo
Contact Us