Each and every online citizen’s inbox has been inundated with this subject line of emails for many months now. This is the GDPR effect!
GDPR or the General Data Protection Regulation applies to all the organisations that operate in the European Union (EU) or deal with the data of EU residents. There are a lot of organisations and a lot of updated privacy policies.
What Does GDPR Say?
This is the reason why organisations are updating their privacy policies and their consumers, subscribers, and users are receiving mails announcing these updates.
Question 1: Who is collecting the data of the data subject?
The organisation should clearly mention the name of the company, subsidiary, or any other entity that is collecting the data.
Question 2: What data is collected and for how long will it be stored?
There should be clear and concise information about the data of the individual that the organisation will be storing or processing. Also, the organisation needs to specify the time period for which they intend to store and/or process the data.
Question 3: What is the legal justification for the data collection?
Companies must inform their data subjects about the specific reasons for which their data is being collected. This will help the users understand that their data is being used for a specific purpose as part of their service delivery.
Question 4: Will the data be shared with other entities?
Question 5: What rights does the user have?