3. What steps have been taken globally to protect data privacy?
Answers
Answer:
hope it help you
Explanation:
The General Data Protection Regulation (GDPR) comes into force in May 2018, and is designed to further protect consumers' personal data. It's the first global data protection law, and considers any identifying information to be personal data.
Explanation:
1.Review your organization’s security
The first step towards compliance with the GDPR is to analyse your company’s internal security measures. Is your IT infrastructure sufficient to securely store consumer data? Take note of any potential risks, and take steps to resolve them as soon as possible. Though the regulations come into force in May 2018, it takes time to upgrade your infrastructure.
2.Analyse the data you hold
Next you should review the data your company currently holds. Is it still required? If not, it’s posing an unnecessary risk to your company and should be deleted. If you still need to make use of the information, make sure you can account for how it was obtained, what it will be used for, and how long it will be held.
3.Ask for consent clearly
The GDPR regulations require companies to clearly ask for consent when collecting consumer data. Simple language should be used so participants understand what’s being signed over, and what will be done with the data. Particular care should be taken to explain how the information will be stored, processed and used.
4.Take special care with children’s data
Children’s data is given specific priority in the GDPR regulations. Companies must now verify ages to check if they’re dealing with minors, as defined by their country’s legal definition. If a child is approached for information, their legal guardians must grant consent. The children must also understand what the data is used for, meaning child-friendly language is a must. Moreover, strong IT security solutions are required, as any data leak could result in child endangerment charges.
5.Appoint a Data Protection Officer
Many companies will soon require a data protection officer (DPO) to oversee the safety of collected information. Organiszations which require a DPO include public bodies, those who regularly monitor data, or those who process large amounts of sensitive personal data. If your company falls into one of these categories, in the coming months you should consider whether you’d prefer an internal or external DPO.