GDPR and CRM
The General Data Protection Regulation (GDPR), the EU’s new privacy law, aims to bring order to a patchwork of privacy rules across the EU and will be immediately enforceable as law in all EU member states on May 25, 2018. The penalty for non-compliance is 20m Euros or 4% of annual global turnover whichever is the largest.
The General Data Protection Regulation (GDPR) is aimed at protecting the personal data of EU Citizens. Personal data equates to any personal data that could identify an individual. The regulation define the rights of citizens to access information related to stored or processed personal data.
Personal data can include names, id numbers, location data, online identifiers, profiling data almost any data about people. The processing of data includes any operation performed on personal data e.g. collection, recording, storage, adaption, altering, transmitting, erasure, destruction.
The main intentions of the law are that individuals have the following rights:
To have access to stored data about themselves
Have the right to be forgotten
The right to know when data has been hacked
Right to data portability
Central to an organisations response to GDPR is an clear understanding of:
What information is being collected?
Who is collecting it?
How is it collected?
Why is it being collected?
Who is the data shared with?
What is the data's intended use?
Could this use cause the individual to object or complain?
Microsoft Dynamics 365 is an ideal repository for managing compliance to the General Data Protection Regulation (GDPR).
CRM Dynamics Ltd have over 25 years experience in CRM solutions and are certified Microsoft Dynamics and ClickDimensions partners.