Protecting our customers’ data is a priority for StaySafe. With the General Data Protection Regulation (GDPR) coming into effect in May, we welcome the opportunity to deepen our commitment in the area of data privacy.
We are making changes to our policies, processes, products and systems to ensure that we comply with the Regulation and continue to put data protection first. We’re also committed to helping our customers meet their requirements under the Regulation.
GDPR: What is changing?
From 25 May 2018, organisations who handle personal data will need to meet new legal requirements, as the General Data Protection Regulation comes into effect across the EU (replacing the 1995 EU Data Protection Directive).
On the same day, the UK’s Data Protection Bill will pass into law, as the Data Protection Act 2018, effectively implementing the GDPR into UK law.
GDPR, and the forthcoming Data Protection Act 2018, expand the privacy rights granted to data subjects (EU/EEA individuals) and place greater obligations on organisations who handle personal data of those individuals (data controllers and processors), wherever those organisations are based.
The Regulation and accompanying UK Act will standardise data protection laws across EU member countries (and post-Brexit UK), giving EU and UK citizens greater control over their personal data. For example, making it easier to understand how your data is being used, and ensuring that the organisations you entrust with your data are taking care of it.
What we are doing to comply with GDPR?
As an organisation that handles personal data (e.g. name, email address, phone number and location of the end users of organisations that use our services), StaySafe is committed to ensuring that we are compliant with GDPR.
Some of the steps we have taken and are taking include:
- mapping all data handled by StaySafe and our suppliers
- analysing GDPR requirements against our current processes and policies
- making changes to our products and processes in line with requirements
- reviewing and updating contracts, as and where appropriate
- training all staff on the requirements of GDPR and StaySafe data privacy procedures
Preparing for the GDPR
The GDPR’s requirements are significant and we are working to bring StaySafe’s product offerings and contractual commitments in line so customers can prepare themselves before May 25, 2018. Measures to achieve this include:
- Continuing to invest in our security infrastructure
- Making sure we have the appropriate contractual terms in place
- Creating tools for data management and data portability
We’ll also continue to monitor the guidance around GDPR compliance from privacy-related regulatory bodies, and will adjust our plans accordingly if it changes. We’ll provide you with regular updates along the way so that you’re always current.
Fulfilling our privacy and data security commitments is important to us. So we’re glad to help you prepare for all the changes the GDPR brings. We have published a list of Frequently Asked Questions, and if you have any further questions please contact us.