GDPR conformity:
General Data Protection Regulation

GDPR conformity as the basis for reliable MBmedien solutions

General Data Protection Regulation (GDPR): Here's what it means, how it impacts individuals and businesses - and how to ensure compliance. Data protection now plays a quite different role in public perception than it did as recently as a couple of years ago. As a provider of data services, MBmedien takes a positive and proactive approach to the issue of data protection, it is committed to GDPR compliance and it acts in line with the principle that the careful, GDPR-conform, security-conscious handling of data is exactly what partners, clients and consumers justifiably expect.

Sharing is caring. Email to a Colleague.

  • MB_xing_rounded-red
  • twitter-color
  • linkedin-color
  • email-color

Download
White Paper

Flip through our publication!

MBmedien-Flowpaper-Kapitel-Icon

Outlook on the GDPR topic area

[ ... read about ... ] Consequences: Against the backdrop of the GDPR plenty of companies need to revise their IT security and data protection strategies. The large number and seriousness of attacks on corporate IT networks and data centres as well as the theft of personal data is of major concern. Increased investment in IT security is urgently needed. This involves protective measures against data leakage (Data Leakage Protection) and DDoS attacks as well as IoT security measures and to enable fulfilment of compliance requirements. The GDPR applies to all companies, no matter what size they are. However implementation projects differ in terms of content, timescale and effort involved, depending on how large companies are [ ... ]

MBmedien-Flowpaper-Kapitel-Icon

GDPR Basics and Facts

[ ... read about ... ] Online marketing without user consent a permissible activity: The following criteria indicate that the legitimate interest in online marketing outweighs the privacy concerns of users: Expectations, if online marketing activities are involved, which users could regard as expected, i.e. as accepted practice. Pseudonymisation: if no names, e-mail addresses, IP addresses or other data that could disclose the identity of a person is processed. Opt-out: the option of avoiding the processing of one’s data by objecting (so-called opt-out). Low level of user impairment: the legitimate online marketing interest decreases in line with the degree of detail in the user’s profile and any possible impairment of the user [ ... ]

MBmedien-Flowpaper-Kapitel-Icon

Measures to implement the GDPR in companies

[ ... read about ... ] Records of processing activities: overview and permissibility check of all processing of personal data. Security concept: checking and documentation of security measures (e.g. authorisation concept, encryption, backups, software updates etc.). Where high-risk data processing is involved, (e.g. extensive processing of health data) an additional data protection impact assessment must be performed ... Data protection officer, Data transfers, Instruction of and undertakings by employees, Rights of data subjects, Data leaks, Update of data protection
statements, Audits and updates [ ... ]

MBmedien-Flowpaper-Kapitel-Icon

Questions & Answers

[ ... read about ... ] What is personal data? Personal data means “any information relating to an identified or identifiable natural
person”. Therefore any information that can be matched to a natural person is personal data. This information includes name, address, e-mail address, telephone number, date of birth, account details, location data, IP address or user behaviour. An “identifiable” natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data or an online identifier. According to the new law, an “identifiable” natural person is one who does not have to be identified by reference to their name but just to an online identifier [ ... ]

Be certain of complying with the EU‘s General Data Protection Regulation

The EU-wide General Data Protection Regulation (GDPR) applies from 25 May 2018 onwards not just in the European Union (EU) itself, but also worldwide to all companies that process and store the personal data of EU citizens. The (GDPR) is a new EU Regulation that replaces the EU Data Protection Directive dating from 1995. The Regulation adopted and indeed upgraded many of the 1995 EU Data Protection Directive’s requirements relating to data protection and data security. Furthermore, several new stipulations were added, which reinforce the rights of data subjects and provide for more stringent penalties for breaches of the
law.

CONTENTS OF THIS WHITE PAPER

  • GDPR VALIDITY, PRINCIPLES AND OBLIGATIONS
  • MBMEDIEN’S OUTLOOK ON THE GDPR ISSUE
  • MBMEDIEN’S STATEMENT OF GDPR CONFORMITY
  • GDPR BASICS, FACTS AND GOOD-TO-KNOWS
  • GDPR-RELATED QUESTIONS AND ANSWERS
  • CHECKLIST FOR DEFINITE GDPR COMPLIANCE
  • FURTHER INFORMATION ABOUT THE GDPR

How would that knowledge help you? Find out everything you need to know about the german „DSGVO - Datenschutz-Grundverordnung“ and learn also more (in german) about „DSGVO-KONFORMES MARKETING“.