GDPR | Seers Article
What is GDPR?
The GDPR is the General Data Protection Regulation. In January 2012, the European Commission aimed to make plans for data protection reform. The primary agenda was to make Europe ‘fit for the digital age’. In 2016, the agreement set out four years before reached on what ought to be involved in this and how it will be imposed. The current framework of the EU applies to every organisation in all member-states and has implications for businesses and individuals across Europe. The vice-president for the Digital Single Market enunciated, “The digital future of Europe can only be built on trust. With profound common standards for data protection, people make sure they have control over their personal information.”
What GDPR actually is?
GDPR is a regime drafted to give EU citizens control over their personal data. It simplifies the regulatory environment for business. This framework is designed to aware of the world regarding the laws and obligations, personal data, privacy and consent in this high tech era.
A data breach can happen, an individual’s information can get lost, stolen or can be released into the hands of people who were never intended to see it, and those people often have malicious intent. Under the terms of GDPR, an organisation and the people who accumulate the personal data under the secure conditions, are obliged to safeguard it from unauthorized users and exploitation. They must also secure the data to respect the rights of data owners and to shun penalties.
Data contraventions in digits
- Google is accused of violating European Data Protection Law (GDPR) by a group of seven consumer organisation. Google accusation
- $280 billion! That’s the communicative cost of all the cyber-attacks on businesses that hit the EU in 2016 alone. cyber-attacks
- The stats are in for the first year of GDRP, Europe’s gold-standard data privacy law. GDPR fines totalled €56M, with more than 200,000 investigations, 64,000 of which were upheld. GDPR fines
- Enforcement notices served under the 1998 and 2018 Data Protection Acts for sustained failures to comply with individuals’ rights in respect of subject access requests. Enforcement notices
Organisation found responsible for the sending of 3,560,211 direct marketing messages to subscribers without consent. Organisation found responsible
- French data protection authority imposed a fine of £44m on Google because of lack of transparency, inadequate information and for not taking consent on personalisation. The complaints against Google were first filed on May 2018 the day GDPR took place by noyb and La Quadrature du Net (LQDN). French data protection authority
- A London based firm Tax Returned Limited has been fined £200,000 by the Information Commissioner’s Office (ICO) for sending millions of unwanted marketing text messages. Tax Returned Limited
- Making it Easy Ltd has been fined £160,000 by the Information Commissioner’s Office (ICO) for making spam calls to people registered with the Telephone Preference Service (TPS). Making it Easy Ltd
- Life at Parliament View Ltd fined £80,000 for leaving 18,610 customers’ personal data exposed for almost two years. Life at Parliament
- EE Limited fined £100,000 for sending over 2.5 million direct marketing messages to its customers, without consent. EE Limited fined
- The Information Commissioner’s Office (ICO) has fined Smart Home Protection Ltd £90,000 for making nuisance calls to people registered with the Telephone Preference Service (TPS). fined Smart Home Protection Ltd
GDPR facts and figures
- The GDPR under Blockchain is a far-reaching technology that has the potential to revolutionize the way in which many industries operate information. GDPR under Blockchain
- May 25th witnessed one of the most significant privacy and online regulation shakeups since the 1980s. Organisations are still confused about GDPR; and bewilderment as well as anxiety surrounding the hype and fear that led up to and followed the GDPR and enactment. May 25th witnessed
- The GDPR has a broad scope of data in the wrong hand requests and actions available to individuals to enforce onto organisations if they wish so. GDPR broad scope
- Level 1 – Minimum Penalty: In this level, as a company, you will be penalized for €10 million or 2% of your annual turnover, as a non-compliance to GDPR. Penalty
- Level 2 – Maximum Penalty: In this level, as a company, you will be penalized for €20 million or 4% of your annual turnover, as a non-compliance to GDPR. Penalty
- The GDPR has impacted on HR system, which has been enriched with insights from enterprise-wide data analytics. HR system
Risk in terms of Data Protection Regulation
- Businesses are not complying with general Data Protection Rules. The UK’s information commissioner on April 08th 2019, enunciated that companies have failed to fulfil their responsibilities regarding GDPR. GDPR
- The torrent of GDPR data breach reporting highlights the necessity for regulation. Pre GDPR era, reporting a data breach was not common, but with the new regulation making it mandatory to notify data protection authorities within a strict timeframe. torrent of GDPR
- Hudson Bay Finance Ltd issued with an enforcement notice for failing to respond to a subject access request. Hudson Bay
- A former managing director of a claims management company who unlawfully obtained and sold personal data has been prosecuted. former managing director
Her Majesty’s Revenue and Customs (HMRC) issued an enforcement notice for failing to get adequate consent to collect callers’ personal data. Her Majesty’s Revenue