Concept in Definition ABC

Internet and technologies are advancing at a pace, while legality that seeks to legislate on the network of networks, advances to a different one, behind what companies, users and even cybercriminals are already doing on the network.

That is why, from time to time, the authorities must catch up, and lately it has been the turn of the European Union with a new community directive, the RGPD.

The GDPR (General Data Protection Regulation) is a mandatory European directive that all member countries are obliged to incorporate their legal code from on May 25, and which regulates the privacy to which citizens are entitled in the electronic field, mostly Internet.

Therefore, it regulates, for example, how companies can obtain our personal data, how they must store them, and their legal obligations, as well as the rights of European Internet users.

Likewise, it also regulates how companies from outside the Union must behave with respect to European consumers, and what regulations they must follow with them.

Despite being a new law, a year before its entry into force, companies were able to know its wording in order to start the adaptation.

However, for the majority this adaptation has not been carried out until the last minute. This has caused that the days prior to May 25, most of the European Internet users have received a barrage of various companies to include or maintain their address of email in the databases of these companies.

And even in the days after the final entry into force, because as we have said, many companies have left it pending until the end.

Only police forces and entities related to the safety national are excluded from their compliance.

The RGPD considers personal data any that is uniquely related to a natural person, that is, to a citizen.

In this way, they fall under his protection data such as email address, name, surname, preferences of any kind and in any area ...

Companies must also provide mechanisms transparent and accessible so that citizens know what their data is stored and is being processed (processed).

It is for this that the figure of the Data Protection Officer, without a specific profile, but who must know the ins and outs of the law and who will be the one who must attend to the requests of clients and users in this regard.

-In this way, the aforementioned mechanism for citizens must, in fact, be a contact with the Data Protection Officer. In addition, it must ensure that the data is properly stored and secured.

The company is legally responsible for the custody of the data.

That also makes it legally responsible for what may happen to them, although there is no “criterion minimum defense ”, that is, it is left to the discretion of each company how it should manage this security.

The new RGPD continues to be a reinforcement of previous legislation, which will not prevent our data from being stolen, since cybercriminals will continue to exist. That is why it is still recommended that we assess well what data we give to any supplier of the Internet, thinking that if tomorrow they are filtered, they will do us the least possible damage.

Photos: Fotolia - sommersby / aroderick

RGPD Law Topics