Ever had to put in personal information to access an article, online shopping website or phone app and start questioning where all this personal information you enter goes? We’ve all been there.
In this episode of Lifesize Live!, we sat down with Lifesize Director of Corporate Counsel Marcy Darsey to talk GDPR and what it means for companies and how they collect customer data.
So what exactly is the GDPR? The General Data Protection Regulation is a new law that has been implemented in the European Union related to data security and privacy. It requires that companies be transparent about how they utilize the data they collect from their customers and employees based on an individual’s right to privacy.
In addition to transparency, organizations must have a trackable and tangible paper trail of their data processing activities, including documentation on what data is collected, where it goes and to whom it is given. It’s also required that privacy and encryption be actively built into the application architecture and not left as an afterthought.
Like most legal processes, this isn’t a one-size-fits-all law. It’s important to assess your own data collecting process and develop appropriate technological and operational measures based on the needs of your organization. Not only does taking this extra step in abiding by GDPR mean you are asserting to your customers and partners that your company is taking safe measures in transferring and storing personal customer data, it also gives your organization a higher level of confidence and assurance to potential customers when it comes to handling their sensitive data.