EU General Data Protection Regulation (GDPR)
The European General Data Protection Regulation (GDPR) is enforceable from May 25th 2018.This legislation changes the landscape of regulated data protection law and the way that companies collect and use personal data.
As per the GDPR website www.eugdpr.org “The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.”
The GDPR not only applies to organisations located within the EU but it will also apply to organisations located outside of the EU if they offer goods or services to, or monitor the behaviour of, EU data subjects. It applies to all companies processing and holding the personal data of data subjects residing in the European Union, regardless of the company’s location.
Is Naverisk Compliant? Yes! All Naverisk services comply with this Regulation and we have taken steps to protect the personal data of our partners, including but not limited to:
- Naverisk SaaS offerings are provided using well established and industry-leading cloud services platforms. These providers have stated their commitment to compliance with GDPR.
- Naverisk SaaS offerings are localized in the region where our partners are located unless the partner specifically designates another locality.
- Naverisk maintains and administers a security policy with safeguards designed to protect the security, integrity and confidentiality of customer data.
Naverisk’s hosted solutions may be used for the collection, processing, and storage of personal data by Partners. In such cases, Naverisk acts as data ‘processor’. Naverisk Partners generally act as the data ‘controller’ determining what data to collect, how long it is stored and how it is used. Since each business is unique, Naverisk recommends that each Partner perform their own GDPR gap assessment.
This information does not provide, does not constitute, and should not be construed as, legal advice on GDPR. Naverisk partners should seek advice from their legal counsel to determine their legal obligations.
For further questions on Naverisk privacy and security, please contact firstname.lastname@example.org