GDPR

The General Data Protection Regulation, or GDPR, is a new regulation which took effect on May 25th 2018. The regulation affects the usage and processing of personal data in all EU countries. GDPR also gives citizen in the EU the right to be forgotten and organization storing personal data have to be able to remove all personal data on request. Some countries, eg. Germany and Denmark, have stricter internal regulations concerning personal data which will exceed GDPR on some points.

GDPR doesn’t differ much from the current Swedish personal data regulation (PUL - Personuppgiftslagen) but it has stricter sanctions if not followed, and this is why all companies are reviewing their personal data processes to make sure they’re compliant by May 25th.

Processing includes any operation which is connected to personal data. This includes data aggregation, data storage, exporting or sharing data, profiling based on personal data and any other action where personal data is involved.

EMG sees GDPR as a great development of the current Swedish personal data law (PUL). The new legislation will put focus on the user to make sure that each individual’s personal data is protected, and more importantly valued much higher by companies processing it. GDPR will demand that each company is transparent, fair and legally bound by their data aggregation purpose not to misuse the data in any way.

The new legislation has brought new challenges for all companies whose business revolves around personal data. It will require us to make sure that our database is kept ajour and that we continue to develop and refine our data processes. The core of GDPR is: Privacy by default and privacy by design.

For our clients/customers this will mean that the services we provide are continuously reviewed and the data aggregated through them will be more qualitative than ever.

The legislation of GDPR will efficiently make sure we, and all other companies who process personal data, keep reviewing and refining our data protection and handling routines. The data we aggregate and process will be more well documented, secure and up-to-date. This means that our customers can feel safe that the data we aggregate is GDPR compliant and secure to use.

It is important to know that work related to GDPR doesn’t stop at May 25th 2018. For us GDPR compliance means that we continuously audit and review our work and always strive towards improvement and compliance plus.

In the long run our vision is not to do the bare minimum but to exceed expectations and take an anterior role in development, improvement, and efficiency of data protection and processing.

If you have any questions regarding GDPR please have a look at our GDPR FAQ.