The GDPR Basics: What Consumers Need to Know

What companies do with consumer data has always been a hot topic – where they store it, how they secure it, and who gets access to it. Often times, this data can get mishandled by organizations, creating a security headache for consumers in the process. Therefore, to ensure all companies are being held responsible for the way they handle consumer data, the European Union took action and created something called the General Data Protection Regulation (GDPR). Passed in April of 2016, GDPR was created to protect the personal data handled by companies – but what exactly does GDPR entail for consumers? Let’s take a look. 

What is GDPR?

The General Data Protection Regulation (GDPR) is data protection legislation which was created in order to introduce tougher fines for non-compliance and breaches, and give people more say over what companies can do with their data. Replacing the EU Data Protection Directive of 1996, GDPR is more of an evolution of existing rules rather than a revolution, but it brings in important changes. These changes have been introduced due to the changing nature of the world we live, the volume and prevalence of data, and the value of personal data in an increasingly connected world.

Who Does It Affect?

With these rules coming into effect on May 25^th 2018, it’s important to know what this legislation specifically impacts. The scope of “personal data” is broad, ranging from online identifiers such as IP addresses to social identities, but basically GDPR will cover anything that can be traced back to you as a specific individual, aiming to protect your personal data and to give you more control. It protects all EU citizens no matter what– in fact, it is irrelevant where a company collecting data is based in the world as long as they have EU customers. GDPR places a requirement on companies to “implement appropriate technical and organizational” measures with regard to how they handle and process personal data. These companies will be required to be able to:

• Offer proof that all individuals have provided consent for their data to be held.
• Demonstrate how and when this consent was obtained.
• Enable individuals to both withdraw that consent at any time and be forgotten (i.e. have their data erased).
• Enable individuals to have full access as to how their data is being processed.

How to Prepare for It

With GDPR fast approaching, the most important thing both companies and consumers can do is be educated and prepared. Consumers need to know their rights, and how GDPR will enable them to control what happens to their personal data. They’ll likely see more “consent” requests attached to any data collection. But remember – the majority of the change involved in GDPR will rely on compliance from organizations that hold consumer data.

Stay on top of the latest consumer and security news by following me and @McAfee_Home on Twitter, and ‘Like’ us on Facebook.

The post The GDPR Basics: What Consumers Need to Know appeared first on McAfee Blogs.

Read more: The GDPR Basics: What Consumers Need to Know

Comments are closed.

More antivirus and malware news?

• Naikon Threat Group Linked to Chinese Army
• Is data on your new Lollipop Android device encrypted? Maybe not
• Generative AI and US copyright law are on a collision course
• Apple shows its enterprise credentials with business accelerator choices
• TalkTalk keeps talking about that data breach but never says the right thing
• Google removes Android VPN with ‘critical vulnerability’ from Play Store
• US reviews use of cellphone spying technology
• Keeping Up With the Andromeda Botnet
• Android Malware ‘Dvmap’ Delivered via Google Play
• AI, Cybersecurity Top Investment Areas for Industrial Organizations: Cisco