On May 25, 2018, a European privacy law, the General Data Protection Regulation (GDPR), will take effect. The GDPR imposes new rules on companies and organizations that offer goods and services to people in the European Union (EU) or that collect and analyze data tied to EU residents. Read this article to discover how kopilot will help you to meet the upcoming GDPR requirements.
GDPR article 4 makes a clear distinction between the data controller “the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data” and the data processor “a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller”;
kopilot has both roles. We are controller when managing data of our employees, clients, and contacts. We are a processor concerning your data: our platform facilitates the reporting and may refer to clients, users, and contacts, yet we do not control the information you choose to manage. As a data processor, we provide the tools that help you achieve GDPR compliance.
As a data processor, we provide tools for and assistance to our clients to become GDPR compliant:
It is important to note that it is your responsibility to respect GDPR guidelines as a data controller. Keep in mind following principles as you and your team prepare:
More information is available on gdpr-info.eu. We advise to contact a lawyer should you have specific questions on your obligations under the GDPR.
If we can help with any kopilot specific question on GDPR, or any other compliance project, feel free to contact our support desk.
Safeguarding the security of your data and ensuring compliance is an essential part of our mission. We continue to invest effort and resources in improvements in this area.