GDPR MyBackup
If you’re doing business in the EU, you’ll need to comply with the new General Data Protection Regulation (GDPR). MyBackup can help support GDPR requirements.
What’s new for EU data protection?
GDPR summary
1.Business requirements:
Organizations subject to GDPR oversight are responsible for the following:
Appropriate measures for protecting personal data.
Transparent data handling processes.
Ability to demonstrate compliance.
Accountability regarding data privacy governance.
2. Who has to comply?
GDPR applies to organizations involved in the following activities:
Processing of personal data in the EU.
Having subsidiaries, branches, representatives or agents in the EU.
Offering goods or services to individuals in the EU.
Monitoring the behavior of individuals in the EU.
3. What data does GDPR cover?
GDPR covers personal information which is defined broadly to include types of data that could identify an individual, including but not limited to:
Names
Addresses
Contact details
HR records
Device IDs
IP addresses
Cookies
RFID tags
Location data
How GDPR defines data processing
Individual rights
The law protects anyone in the EU whose data is subject to collection or processing and grants several rights, some of which include:
Rectification
If personal data is inaccurate or incomplete, individuals have the right to have their data rectified or completed by the data controller.
Erasure
Individuals can request that their personal data be erased, including where continuing to process or hold the data is no longer relevant or appropriate.
Portability
Upon request, data controllers must provide certain personal data in a portable or machine-readable format.
Central themes of GDPR
Privacy by design
Data processing operations must use appropriate technical and security measures to protect the privacy of personal data.
Privacy by default
Only personal data that is necessary for the specific purpose of the processing may be processed