RGPD: Are you concerned? All you need to know

Legal document

TABLE OF CONTENTS

Do I process personal data?
Who is affected by the RGPD?
What are the RGPD compliance obligations?

RGPD: Are you concerned? All you need to know

Find out if the RGPD affects you and what your obligations are in terms of personal data protection.

The General Data Protection Regulation (GDPR) is crucial European legislation that governs how companies handle and protect individuals’ personal data. But are you wondering if the GDPR is relevant to you? In this article, we’ll explore what the RGPD is and who it affects.

Do I process personal data?

Before going any further in understanding the RGPD, ask yourself this fundamental question: am I processing personal data? If your company collects, stores or processes data such as:

Personally identifying data:

First and last name
Telephone number
Email address
Postal address
Identification numbers such as social security number, passport number, or driver’s license number

Financial and transactional data:

Banking information (such as account numbers)
Purchase and transaction history
Credit/debit card data

Employment data :

CVs
Cover letters
Performance evaluations
Salary and tax data

Location data :

GPS data
IP addresses
Other data indicating a person’s physical location

Health data :

Medical records
Health histories
Genetic or biometric information

Children’s data:

Any personal information relating to individuals under the age of 16 (or the age specified by the legislation of a Member State).

Online monitoring data :

Cookies and trackers
Browsing history
Data from social networks

Opinions and beliefs :

Political views
Religious or philosophical beliefs
Union membership

Electronic identification data :

Online identifiers
Pseudonyms
User profiles

Images and recordings :

Personal photos
Videos
Voice recordings

So the RGPD concerns you.

Who is affected by the RGPD?

The RGPD applies to any company or organization, regardless of size, that processes the personal data of European Union residents. Whether:

Companies and organizations: All companies and organizations, regardless of their size or nature, are affected by the RGPD if they process the personal data of European citizens. This includes, in particular, companies with 60 or more employees.
Controllers and processors: Data controllers are the entities that determine the purposes and means of processing personal data. Subcontractors, on the other hand, process data on behalf of the controller. Both are subject to the obligations of the RGPD, although their responsibilities differ.
Public authorities and bodies: public authorities, including government bodies, are also required to comply with the RGPD in their data processing activities.

What are the RGPD compliance obligations?

Under the RGPD, companies must comply with several obligations, including:

Obtaining consent: Companies must obtain the explicit consent of individuals before collecting, processing or storing their personal data.
Transparency: Companies must provide clear and transparent information on how they collect, use and protect personal data.
Data security: Companies must implement appropriate security measures to protect personal data against loss, theft, unauthorized access and any other form of unlawful processing.
Respect for individuals’ rights: Companies must ensure that individuals can exercise their rights, such as the right of access, the right of rectification, the right to erasure, the right to data portability and the right to object.

✅ In conclusion, the RGPD is an important regulation that affects any company processing the personal data of European Union residents. By complying with the RGPD’s obligations, businesses can boost their customers’ trust, avoid fines and penalties, and help create a safer, more privacy-friendly digital environment for all. Make sure you inform yourself about RGPD requirements and put in place the necessary measures to ensure your company’s compliance.

Se connecter

Legal document