Читать книгу Digital Etiquette For Dummies - Eric Butow - Страница 58

You may have heard a lot about the General Data Protection Regulation, better known by its abbreviation, GDPR. The GDPR is a regulation touted by the GDPR website at https://gdpr.eu (see Figure 2-6) as being the toughest privacy-and-security law in the world.

FIGURE 2-6: The GDPR has a comprehensive website to answer your questions.

Like similar laws in the US, the GDPR lays out seven principles for protecting data:

 Your processes must be lawful, fair, and transparent.

 You must process data for legitimate purposes directly related to the subject of that data.

 You should collect and process only as much data as you need for your purposes and not one bit more.

 You must keep personal data accurate and updated.

 You should store personally identifiable data only as long as you need for your specified purpose.Any data processing you carry out must ensure security, integrity, and confidentiality, such as by using strong encryption.

 The person responsible for managing the data — the data controller, in GDPR terminology — must be able to demonstrate GDPR compliance.

What we list here only scratches the surface. You can view the latest news about GDPR and get all your questions answered (and then some) on the GDPR website at https://gdpr.eu.

If you do business in the European Union, or you plan to, you’re also bound by the rules in the GDPR. So, if you’re not familiar with those rules, now is a great time to put down this book and do some research. We’ll be here when you return.