יום חמישי, 12 במאי 2016

Data Processors - Practices for achieving compliance with the General Data Protection Regulation

The new EU Privacy Regulation (GDPR) will come into force on 25 May 2018, the deadline appears far, but given the amount of changes to be implemented it seems too soon. Data processsors, which are also cloud service providers (CSPs) and which their service requires storing and processing EU citizens' personal data on a large scale, must be part of this new regime. Therefore, in business-to-business situations, CSPs, which are the data processors, must adapt their old data privacy controls and practices, which were related to the EU Data Directive, to the new requirements of the GDPR. Some practical actions that CSPs, which process personal data, can perform in order to achieve compliance with the new GDPR, are detailed in this post.