GDPR
What is personal data?
The simple answer is that personal data is anything that others can use to identify you. Data protection is the process of safeguarding information from being compromised, identity theft, corruption, and more.
The EU General Data Protection Regulation (GDPR) defines personal data as “any information relating to an identified or identifiable natural person (‘data subject’).
In particular, by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
Types of personal data include name, address, phone, email, birthdates, and bank account and credit card numbers, etc. The list grows with the change in legislation.
GDPR is a new set of rules governing the privacy and security of personal data laid down by the European Commission. It greatly increases the burden of data controllers, holding the employer entirely responsible for data breeches and any issues that may occur.
What is the difference between PCI and personal data?
PCI data (payment card industry data) is just one type of personal data. The PCI Data Security Standard (PCI DSS) protects credit cardholder data such as debit or credit card number, expiration date and card security code.
How can I limit the threat of a data breach?
Almost everyone can do more to protect personal data. CSR Readiness® helps you assess your risk in handling personal data, remediate your processes, implement policies, train staff and continue to monitor and audit, as required by laws and regulations.
What are some examples of a breach?
A breach can occur in many ways, including through lost laptops or smart phones, loss or improper disposal of paper records, intrusion into your network or PC by hackers and theft. The definition continues to expand.
GDPR IN THE NEWS.
Check out relevant articles relating to data protection (implemented as of May 25th, 2018) and the steps you can take to understand the new legislation and secure your data today.
Data Subject Access Requests during COVID-19
Data Subject Access Requests (DSARs) Do the timelines for responding to GDPR data subject requests still apply where an organisation is temporarily closed [...]
GDPR – Data Protection during COVID-19
GDPR Compliance: How to manage your Data Protection during Covid-19? GDPR Guidelines: how to manage and comply with customer's personal data during Covid-19. [...]
GDPR
General Data Protection Regulation [GDPR] Glossary of Terms and Definitions in relation to GDPR Binding Corporate Rules (BCRs)- a set of [...]