Do You Know Your GDPR Rights?
You may remember this time last year when you weren’t able to click on any website or email without hearing about GDPR changes. Every site would display you with something along the lines of “We’re making some changes to our Privacy Policy.”
But surprisingly, despite these changes coming out last May, research conducted in 2018 by the Chartered Institute of Marketing (CIM) founds that 48% of consumers didn’t understand how companies used their data by companies. So, what exactly is GDPR, and how does it affect you?
What is GDPR?
GDPR stands for General Data Protection Rule and is a piece of legislation that automatically applies to all 28 European Union member states. The law came into effect on May 25th, 2018, to strengthen the rights that citizens have over their personal data when it is help and processed by companies.
This law was implemented due to the misuse of people’s private data that came before and was punishable by only a ‘slap on the wrist’ and a warning. Now, these laws are in place to protect people’s rights and are punishable with much more severe consequences for any company found to be in breach.
What Are Your Rights?
There are seven main rights that GDPR entitles you to. These rights are universal across all the member states and apply to any and every citizen who visits a website.
1.The Right to Be Informed
Organisations must now tell you what they are collecting and storing your date before they do it, as well as telling you how long they will store it for and who it will be shared with. You will be asked to give your consent before they can send you ant marketing communications. You can withdraw this consent at any time.
2.The Right of Access
You are entitled to have access to your date for free and within a month of making your request.
3.The Right to Data Portability
You can request a copy of your data in a commonly used format for your use as an when you see fit.
4.The Right to Rectification
You can send up-to-date information to rectify any wrong or incomplete data, and the company must respond within a month and forward these updates to everyone with whom they have shared your data.
5.The Right to Erasure
You can request that an organisation deletes all your data. Companies can only refuse if they have a ‘compelling reason’ to hold onto your data.
6.The Right to Restrict Processing
You can tell an organisation to stop using your data without forcing them to delete it from their databases.
7.The Right Object To ‘Automated Decisions’
An ‘automated decision’ is when your data is used to help decide if you’re eligible for products. This rule gives you the right for human intervention if you think you're unfairly treated based on these automated decisions.
Penalties for Data Breaches
For any company who is found to be in breach of GDPR, there are monetary penalties to be incurred in one of two classifications:
- For less severe breaches the maximum fine is €10 million or two per cent of a company's annual revenue, whichever is greater.
- For more severe breaches, the maximum fine is €20 million or four per cent of a company's annual revenue, whichever is greater.
For example, it has been announced that British Airways are facing a fine of £183 million after it the personal data of 500,000 customers was stolen from their website and mobile app.
Fines are only one aspect contributing to the financial loss you will suffer because of a GDPR breach. You will have compensation claims for damages suffered, reputational damage and loss of consumer trust to consider.
Similar Articles
The internet has changed the way we do business in many ways. With the rise in e-commerce platforms, starting an online business has never been easier, and this includes opening an online medical supply business. The medical industry is constantly growing, and the demand for medical supplies is never-ending.
A walk-in stability chamber, also known as a stability room, is a specialized environment designed to provide controlled conditions for testing and storing various products. These chambers are specifically engineered to maintain precise temperature, humidity, and lighting levels, ensuring optimal conditions for the stability and shelf-life assessment of pharmaceuticals, cosmetics, food items, and other sensitive materials
Cybersecurity is critical for modern businesses, with rising cyber threats making it vital to protect valuable assets and sensitive information. Digital audits analyze a company's digital security posture, identifying potential vulnerabilities and threats that could lead to data breaches.
If you're in need of durable, versatile, and weather-resistant covers, tarpaulin plastic sheets are an excellent solution. These sheets are widely used in various industries, including construction, agriculture, transportation, and manufacturing.
Document verification is a crucial process that helps assure the accuracy and authenticity of different documents. Ensuring compliance, protecting reputation, making informed decisions, and preventing fraud are essential.
As businesses grow and evolve, they often face the need for audits to ensure compliance and assess the effectiveness of their internal controls. In many cases, component auditors are called upon to help with these audits, especially when a company has multiple subsidiaries or business units.
Gain insight into the connection between corporations and ESG with our informative guide. Learn how environmental, social, and governance factors impact business practices.
The industrial sector has long provided benefits to people all around the world. Although there is a tiny initial investment needed, once it is created, it generates large, continuous earnings. Choosing a solid manufacturing business concept is essential to the company's success.
The last year was filled with concerning headlines and challenges for people running SMEs. There were also some opportunities too. The cost of living crisis and the knock-on effect to industry from the war in Ukraine were some of the main headline makers.