Enabling Compliance to the General Data Protection Regulation (GDPR)
Amsons has always recognized data protection as an important topic for its stakeholders in the digital age and understands the responsibility that comes with the handling of personal data. With the introduction of the European Union (EU) General Data Protection Regulation (GDPR), Amsons has extended its data protection commitment by enhancing its solutions with new capabilities that will enable its stakeholders to manage their GDPR compliance programs.
What is the GDPR?
On April 27, 2016, the Parliament and Council of the European Union adopted the EU General Data Protection Regulation (GDPR). The GDPR will be directly applicable to EU member states as of May 25, 2018, thereby ensuring a harmonized data protection standard across the EU.
The GDPR standardizes personal data protection laws and imposes strict obligations on organizations that control and process personal data. The GDPR aims to strengthen the fundamental rights of EU residents by expanding privacy rights and giving individuals control over their personal data. More information about the GDPR can be found on the European Commission Website.
How has Amsons addressed the GDPR?
Amsons has appointed a Data Protection Officer and established a cross-functional GDPR Readiness Team that has taken into account both internal and stakeholder compliance requirements. The GDPR Readiness team is charged with:
– Managing Amsons internal compliance to the GDPR, including, but not limited to, its privacy policies
– Identifying and monitoring enhancements to Amsons offerings, websites and communications to specifically enable customer and other stakeholder compliance to the GDPR. These enhancements include:
Changes to access rights and security mechanisms;
Improvements to user consent management;
Reinforcement of processes to request modification or deletion of personal data;
Improvements to product documentation and user guides regarding data privacy best practices.