The General Data Protection Regulation 2016 (GDPR) will come into force across all European Union (EU) member states (AND companies outside of the EU if those companies target EU member states) on 25 May 2018 . GDPR updates the obligations on your organization as the owner (or data controller) personal data for which you are responsible.
We strongly recommend that you carefully consider the change in law and the impact it will have on your business, assuming you have not done so already.
GDPR provides a number of new or enhanced rights and obligations, including:
A number of our customers have asked whether our software is “GDPR compliant”. Whilst we provide a number of different solutions to our customers, the overwhelming answer to this question is that a software product on its own is not likely to be either GDPR compliant or non-compliant; compliance depends on how a system is used, and with what personal data. It is therefore important for you to consider your own GDPR needs.
There is no case law regarding the GDPR requirements, and as such many of the regulations are interpreted without real certainty.
Digital Vantage Point takes security and privacy very seriously. The technical requirements to deliver an appropriate level of access to information, encryption and security is continually evolving. Our mostcurrent version of Nav-to-Net 8 includes numerous advances in these areas. The newest version will include administrative tools for responding to GDPR based Data Subject Requests as well as updates tocryptography, TLS, credit card information handling and security in general. Current customers of DVP on a maintenance plan are entitled to the latest version of our software and should consider upgradingsoon to take advantage of these improvements.
We are currently providing recommendations to existing Nav-to-Net customers who want to address GDPR concerns without upgrading. Existing customers should contact [email protected] to follow up.
Below is a list of several resources we feel provide good insight for GDPR:
EUR-Lex - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance) EUR-Lex - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Text with EEA relevance) PDF Microsoft - Data Protection Resources; Whitepapers, FAQs, Security Reports, Penetration Tests, Risk Assessment Tools and Other Resources Information Commissioner's Office - Right To Erasure Zettashpere - Getting GDPR Consent & Opt In Microsoft - How our Products Help with GDPR Compliance Microsoft Readiness Tool set: Microsoft - GDPR Assessments: Evaluate your Readiness for GDPR Microsoft - Get GDPR Compliant with Dynamics NAV Hallam - How to Make Your Website GDPR Compliant Google - We are Committed to Compyling with Applicable Data Protection Laws General? ?Data? ?Protection? ?Regulation? ?(GDPR)-? ?A? ?CANDDi? ?perspective PDF Sage - What is the GDPR?