Consulting, Support and Preparation of Compliance
The EU General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.
The GDPR was approved and adopted by the EU Parliament in April 2016. The regulation will take effect after a two-year transition period and, unlike a Directive it does not require any enabling legislation to be passed by government; meaning it will be in force May 2018.
It is compulsory, so it is concerning to all Hungarian companies, offices, organisations – Yours too!
The rest of the time assumes a very tight schedule – it was already on the agenda in the Hungarian legislation in September to define the needed law amendments.
Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million. This is the maximum fine that can be imposed for the most serious infringements e.g.not having sufficient customer consent to process data or violating the core of Privacy by Design concepts. There is a tiered approach to fines e.g. a company can be fined 2% for not having their records in order (article 28), not notifying the supervising authority and data subject about a breach or not conducting impact assessment. It is important to note that these rules apply to both controllers and processors -- meaning 'clouds' will not be exempt from GDPR enforcement.
Hungarian National Authority for Data Protection and Freedom of Information (NAIH) has been already received the needed governmental budget support to be able to increase the number of the related technical staff to the double compared to the existing numbers.
However, it seems to be, that the affected companies, organisations are not so prepared…
In the present situation KÖZINFORMATIKA Nonprofit Ltd. Offers to make a survey of the existing situation of data management practice at the companies, and develop a Gap Analysis and prepare the organisations to the challanges according to the required steps to become GDPR Compliant.
Those organisations, who already obliged to have a dedicated Responsible Person for Data Protection, will easily understand the similar terminology in GDPR – the Data Protection Officer (DPO)
There will be definite changes or additions in the affected elements of the organisations, meanwhile additionally new legal institutions will become part of the obligatory Data Protection legislation, e.g. Data Protection impact assesment.
KÖZINFORMATIKA – based on the existing practice of implementations in great numbers, and the experience coming from the last years - assures You with confidence being able to help You to perform the tasks regarding to make your organisation GDPR Compliant!
Before the regulation takes effect, KÖZINFORMATIKA already audits Your company due to the professional gudelines by NAIH, so the ones, who start the preparation in time, will have a huge advantage waiting for the official inspection – and can be sure that their data are protected.