First-hand information about GDPR after the GDPR Conference on 29 Jan 2018 in Sofia
BAAERLTD team participated at the GDPR Conference on 29 Jan 2018 in Sofia. It focused on the effects of the upcoming General Data Protection Regulation (GDPR) – the EU’s largest data protection reform. During the event we were able to raise questions directly to Mariya Gabriel, EU Commissioner for Digital Economy and Society, and Lilyana Pavlova, Minister of the Bulgarian Presidency of the Council of the EU.
The regulation applies from 25 Mat 2018 and it has two main goals:
- strengthen the control of EU citizens and residents over their personal data and the way the business manages it;
- unify the rules for the business for administering customer information;
- apply to all companies processing personal data;
- imply fines (up to 4% of annual global turnover or €20 million) for the companies, which are not compliant with the regulation.
GDPR aims to strengthen the control of EU citizens over their personal data and the way business uses it by applying new personal data protection rules and rights:
- Right to be forgotten – when a subject no longer wants their data to be processed the data should be deleted.
- Data handling transparency – more transparent and easy to understand information how companies process data.
- Privacy by design – data protection should be implied from the very beginning of designing systems,not added afterwards.
- Fast data breach detection – businesses and organizations have to to inform their clients about any data breaches without any delay.
- Data portability – any person can receive the personal data concerning them and can transmit that data to another controller.
- Informed consent – companies will no longer will be able to use personal data without а clear consent from the users.
- Data Protection Officer (DPO) – requires data controllers to asign a new position in companies with more than 250 employees and in firms, which manage data processing operations.
B.A.A.E.R. is already working together with the Bulgarian Regulatory Authority – Commission for Personal Data Protection (CPDP) for implementing their requirements on the GDPR, synchronizing methodologies, participation of their speakers at GDPR seminars we organize, etc.
If you have any questions or if you need a consultation how to apply GDPR for your business, contact us: email@example.com.