Whether it is a small or large business, in the middle of preparing compliance with latest data privacy laws of European Union: GDPR or General Data Protection Regulation which is already effective from 25th May 2018.

GDPR is broader in scope and could apply to the businesses outside of EU. Businesses which don’t submit GDPR might face huge fines. To make you informed, here is a brief guide regarding GDPR.

Note:- Consult your legal counsel in order to know if you subject to GDPR.

Definition of GDPR

General Data Protection Regulation or GDPR has been effective from 25th May 2018. Passed by the lawmaker of Europe to make consistent data privacy rule in all member states of Europe.

The purpose of GDPR is:-

1. Support privacy as essential human right

2. Need enterprises which manage personal data and it is accountable for handling the data appropriately

3. Provide individuals rights on processing of the personal data or used otherwise.

Definition of Personal Data

All-in-all, GDPR explains personal data - 'any info related to identifiable or identified natural person.'

It means additionally to information types like name, email address, your address, contact info, financial info and identification numbers can too include info about digital life, such as geolocation, cookies, browsing history, IP address and others.

Also, it might mean an information of person, including mental, social, economic, cultural or physical identities.

So, in case information could be traced or related to identifiable person, then it is likely to consider ‘personal data’ under GDRP. Read out for more information.

Individuals Rights Provided by GDPR:-

There are a few rights individual might exercise in GDPR, such as:

Access Right - People can ask for personal data copy, the retained data related to them and ask for explanation that how that data is utilized.

Rectification Right - Individuals have right to revise, remove or correct their personal data anytime.

Restrict Processing Right - In case, a user believe, for instance that his personal info is gathered illegally or inaccurate, he/she can request limited usage of personal data.

Right to be forgotten - Users can ask for deletion of their personal information.

Portability Right - Individuals have right to get their identity info in commonly used, as well as machine-readable structured design.

Right to Object - When an individual make a decision that he/she not want to allow personal data should be included within analytics or he/she don’t want to receive direct marketing mails as well as personalized marketing content anytime, then he/she can say not to use their personal data for such purposes.

Note:- Kindly note rights are not utter, so exceptions/limitations might apply in a few cases.

How DialWebHosting Comply with GDPR?

In case, you exercise these rights as an existing DialWebHosting customer, DialWebHosting (a renowned web hosting provider) will reply according to Privacy Policy. We will explain what info needs to be collected from you as its customer or the way that information is utilized or shared via DialWebHosting. 

However, we update our privacy policy in order to line up with GDPR. You don’t have to worry as we will provide all users notice of letting them know when our privacy policy will update or change. Therefore, you will be ready for this.

Whenever required, we would support you too as DialWebHosting customer or user, fulfilling GDPR requests received via your contact.

In addition, we won’t publish domain name registrants’ personal info in WHOIS. It is done to make sure that this output is basically a complaint with GDPR.

Though, personal data access of registrants might be granted the moment it is needed for technical causes like for transfers’ facilitation or law enforcement (if it is required).

“Processors” and “Controllers”

There are basically two parties, having responsibility of handling data – “processor” and ‘controller”. Thus, it is vital to know if you are working as processor or controller and you need to understand responsibilities accordingly.

“Controller” determines means and purpose of personal data utilization.

On the other hand, “processor” acts as per “controller” instructions and processes the personal data.

What it means?

DialWebHosting could be “processor” or “controller” as per performed data processing activities.

How GDPR affects Businesses?

Companies, businesses as well as individuals having EU presence or in case don’t have presence provide services or goods, monitor behavior and individuals in Europe have to comply this law.

As needed, we are updating and reviewing our agreements with subcontractors (include GDPR terms) and customers, polices, notices, features, internal processes as well as templates in order to help you in achieving the compliance.

Note - Kindly consult with a legal counselor t know whether GDPR is applicable to your business. If yes, then what actions should be taken by you to comply with GDPR?

In a nutshell, all you need to do is know all obligations to continue your business with the customers. These all are not new obligations, so you might have complied with a few of them already.

Tags: GDPR