What is General Data Protection Regulation (GDPR)

What is Data protection law | General Data Protection Regulation (GDPR)

Nowadays almost every person is connected with social media and social media has become a famous platform across the world.

But with the increase in the reach of social media, the risk of theft of personal information of people associated with this media platform is also increasing.

At present, many such cases have been reported from all over the world in which personal information of people has been stolen through social media without asking them.

To solve this problem of data theft, the European Union has taken strict steps to create a General Data Protection Regulation.

What is General Data Protection Regulation (GDPR)

 

Information related to General Data Protection Regulation  –

Name of regulationGeneral Data Protection Regulation
Made byThe European Union
When made14 April 2016
When will be applicable25 May 2018
Whose place will applyData protection instructions
How many countries will applyEuropean Union countries (28 countries)

What is the EU –

The European Union (EU) is a union of twenty-eight countries, which was formed in 1993. At present, the total population of the countries under this union is more than 510 million. The rules made by the EU have to be followed by every country associated with this union and the EU is only recently implementing the General Data Protection Regulation.

What is General Data Protection Regulation (GDPR)

The General Data Protection Regulation (GDPR) is a law created by the European Union, designed to protect the data of EU citizens.

According to this regulation, no company will be allowed to store personal information of any citizen for a long time and the company will have to keep the information of its customers safe at all costs.

When was this law made –

This law was enacted by the European Union in the year 2016 and this law has been replaced by the Data Protection Directive.

The Data Protection Directive was also a law enacted by the European Union, which was enacted in the year 1998 for the data protection and privacy of individuals belonging to the European Union.

But now the European Union has decided to abolish its Data Protection Directive Act and bring General Data Protection Regulations in its place and this rule will give Europeans more control over their personal data.

When will this law be implemented-

The General Data Protection Regulation Act will be implemented on 25 May 2018. As soon as its implementation, it will be implemented in all 28 countries under the European Union and companies working in these countries will have to follow it.

Objectives of GDPR

  • The GDPR primarily aims to give citizens and residents control over their personal data and simplify the regulatory environment for international trade by unifying regulation within the European Union.
  • The second objective of this law is to further protect the data of citizens of every EU-connected country and to solve problems like cybercrime.

Key Feature of General Data Protection Regulation

  • The GDPR law not only makes citizens productive of data but also empowers them as data owners. With this, if a citizen wants to remove his data from a site, then he can request this thing from the company.
  • If any company comes to request any of their customers to delete its data, then that company will have to reply to this request of their customer as soon as possible.
  • With the help of General Data Protection Regulations, the way companies and organizations handle and use our personal data will be more transparent.
  • The care of our data is being handled by companies in some way, and this law has also been taken into consideration and according to this rule, companies may also have to prove that they are handling the data correctly or not. .

What kind of data will protect by GDPR

  • With the help of General Data Protection Regulation, information related to the basic identity of citizens such as the name, address and ID of a person will be protected.
  • With the implementation of the General Data Protection Regulation, it will be difficult for any EU citizen to steal things like web data (location, IP address, cookie data and RF ID tags).
  • With the help of this rule, biometric data, racial or ethnic data, political opinion of any person can also be saved from going into the wrong hands.

Which companies have to follow these rules

  • Every company that collects or processes personal information of citizens of all countries under the European Union must comply with GDPR.
  • If a company is not in these countries but stores the information of the citizens of these countries, then that company will have to comply with the GDPR.
  • If a company does not comply with GDPR, then that company will not be able to operate in the country under the European Union.

Cost to follow GDPR rule

If companies worldwide want to operate in the EU country, those companies must prepare their company under the GDPR standards set by the European Union and to do so for $ 1 million. It can cost up to $ 10 million.

Failure to abide by GDPR rule will attract penalty 

If a company is found not to comply with GDPR, then that company may have to pay heavy fines. And the company may have to pay € 20 million as penalty or 4 percent of the global annual turnover as payment.

Benefits of GDPR

The implementation of the General Data Protection Regulation in the EU will provide many benefits to the citizens of the countries involved and these benefits are as follows.

  • Will provide better data security 

With the help of this regulation, the citizens of the European Union will be provided with better data security and big companies of these countries will also be protected from cyber attack. In the year 2017, around 68% of UK companies have fallen victim to cyber attacks and with the enactment of this regulation it is expected that cyber attacks will now be curbed.

  • Reduce Data Maintenance Costs

Organizations complying with GDPR must periodically delete all the data that is not necessary for them and by doing so will reduce the cost incurred in storing the data of these organizations.

  • Confidence of people on social media will increase

Recently, due to data theft through social media, people’s trust was removed from social media and people had kept distance from this media. But with the introduction of this rule, people’s trust will once again increase on social media.

Disadvantages of GDPR

  • Increase Costs of the company will increase

Companies have to prepare themselves to follow GDPR and some new employees will have to be hired, which will increase the burden of money on companies.

  • Workload will also increase (Workload)

Coming from this rule, companies have to ensure the security of people’s data. As a result, there can be considerable workload on the employees of the company for some time.

  • Small company will suffer                       

GDPR will have a major impact on small companies. Because most of the small companies do not have the resources to meet the requirements related to following the GDPR. Some small companies have even stopped due to General Data Protection Regulation.

Terms and Conditions related to GDPR

Report on GDPR violation ( GDPR Breach Notification )

If any kind of data theft takes place after GDPR is implemented, then the company will have to give this information to the Supervisory Authority within 72 hours. Apart from the supervisory authority, the person whose data is stolen, the company will also have to inform this person.

Data Protection Officer (DPO) has to be appointed –

  • Under the terms of the GDPR, every organization must also appoint a Data Protection Officer (DPO). Whose work will be related to protecting the data of the people. Although there should be no set criteria for who a DPO should be or what qualifications it should have. But according to the information commissioner’s office, the DPO person should have professional experience and understanding of data protection law.
  • If a company is found to have failed to appoint a data protection officer, then that company may have to pay penalty for not following these rules.

Which company will have the most impact on this rule-

According to the survey related to the impact of GDPR, due to the implementation of GDPR, the companies related to the technology sector will be affected the most. After this sector, GDPR is going to have the biggest impact on online retailers, software companies, financial services and online services companies.

Indian companies will also be affected

  • There are also many Indian companies that are doing their business in European Union countries and these companies will now have to comply with GDPR. But it is a matter of concern that far more of these companies have not prepared themselves to follow the GDPR. In such a situation, it would be impossible for these companies to operate in the European Union countries.
  • Apart from this, it has also been found in a survey that more than 60% of Indian companies are still unfamiliar with this new regulation.

The General Data Protection Regulation can prove to be very helpful in dealing with scandals like Cambridge Analytica , and with the help of this regulation, not only can data theft be stopped but also the growing cybercrime around the world can be eliminated. Apart from the European Union, other countries should also make such a rule so that they can also protect the data of their citizens.

More Links –

what is Martial law, who can declare martial law ?

Effects of Green Revolution on Indian Economy ?

What is a mercy petition ?

Leave a Comment