The General Data Protection Regulation (GDPR) will replace the 1995 EU Data Protection Directive and was designed to unify data privacy laws across Europe. The new regulation becomes in effect on May 25, 2018, and although many of the GDPR’s central concepts and principles are similar to those existing currently, new elements and major enhancements will mark the most significant change to European data privacy and security in over 20 years.
This legislation will further protect and strengthen data protection for all citizens of the EU, and revise the way businesses and organizations across the region approach data privacy; including how the data is collected, stored, processed and destroyed, regardless of where the company or organization is based.
As an organization or business that processes or holds personal data of any individual in the EU, the GDPR will apply to you whether you are located in the EU or not, as the primary change with the legislation is the territorial scope of this new law. The Data Protection Directive did not regulate businesses based outside of the EU, however, now US-based companies without offices nor employees located within in the EU can find themselves subject to the GDPR.
Under the GDPR, your company is subject to the new law if it processes personal data of an individual residing in the EU when the data is accessed. If you are a US company with an Internet presence and provide goods or services or monitors behavior you could be subject to GDPR, even if no financial transaction occurs.
At SmartMax Software, developers of ChatBeacon, we have fully embraced the GDPR and are working diligently on alterations to the ChatBeacon software, as well as, our procedures and policies in order to meet the deadline, to maintain transparency and to make it easier for customers to comply with the regulation.
Changes to the ChatBeacon Chat Window
Changes to the ChatBeacon ChatBot
Changes to the Software which will allow better control of Customer Data
Updates to the ChatBeacon documentation complying with GDPR requirements
Data portability, allowing individual data to be exported, modified or request deletion of personal data
Revisions to our data models
Coordinating with our Vendors to secure GDPR plans and Agreements
Maintain a Security Incident Response Program.
Revisions to our Data Processing Agreements (DPAs)
Appointment of a Data Protection Officer (DPO)