RGPD
Source: www.aa-org.com
EditorialEnglishNews

What is the GDPR? 📜

Vous pouvez lire cet article en Français en cliquant ici

For several years, the GDPR has been at the heart of many discussions and is also at the origin of several sanctions that we have observed in Europe for several years (Google, WhatsApp…). But do we really know what it is? This will be the subject developed in this article exclusively for the GDPR.

Purpose and nature 📜

GDPR stands for General Data Protection Regulation. It is vital for everyone, whether we are a natural person or a legal entity resident in the European Union.

The GDPR unifies the data protection laws of the 28 EU (European Union) member countries. Its aim is to establish a strong framework to protect personal data. It has been applicable since 25 May 2018 and has a profound impact on the practices of companies, administrations, associations or individuals if they process personal data. This regulation aims to give us back control over the use of our data. The aim here is to put an end to the excesses of their use without explicit consent and to impose ‘Responsibility’ and ‘Ethics’ in the practices of the new economy. Thus the GDPR gives the individual back the power over his or her personal data.

Conditions of application, risks and sanctions 🗂

All organisations (public or not) residing within EU countries delivering goods or services to Europeans delivering goods or services from outside the EU with their headquarters or subsidiary within the EU are concerned here.

The GDPR does not only concern the GAFAM (Google, Apple, Facebook (now Meta) and Microsoft) also known as the « Big Five »: these five technology giants dominate the world today thanks to Big Data. It also concerns all companies meeting these criteria. Failure to comply with the GDPR can result in a fine of up to €20 million or, for companies, up to 4% of your company’s consolidated turnover and a bad reputation. Violating the GDPR can have a serious impact on the operation and future of a company.

Some key terms

  • Who is concerned: the individual or the Data Subject
  • The authority that enforces the law: Supervisory Authority
  • The person responsible for deciding why and how data is processed: The Data Controller
  • The subcontractor who carries out the processing: Data Processor
  • Personal data is anything that directly or indirectly identifies an individual. (Identifiers, cookies, biometric or genetic data, civil status, administrative, associative, political or social data.
  • Data processing is any action on your personal data.

As you can see, the GDPR imposes new roles and actions on all the actors involved. In concrete terms, the GDPR helps to regulate the collection of your personal data by guaranteeing its respectful use (not selling it for profit). But what does this have to do with you? Let’s take an example : Let’s say you arrive at a website and it asks if you agree to your data being used, you can either authorise or refuse. When you authorise, the website collects all your browsing data and can then sell it on. That’s how you end up with a targeted ad in your news feed on social networks after doing a search.

Source: CNIL

Qu'en avez-vous pensé?

Excité
0
Joyeux
0
Je suis fan
0
Je me questionne
0
Bof
0

Vous pourriez aussi aimer

Laisser une réponse

Votre adresse e-mail ne sera pas publiée. Les champs obligatoires sont indiqués avec *

Plus dans:Editorial