GDPR is a European-wide regulation, effective from 25th May 2018, that is designed to unify and strengthen data protection for all individuals within the European Union (EU). More detailed information can be found on the UK’s ICO website here, but the overall aim is to protect the individuals fundamental right to privacy and the protection of such individual’s personal data.
Personal Privacy - individuals will have the right to: | Transparency - organisations will have to: | Notification & Controls - organisations must: | IT & Training - organisations will have to: |
---|---|---|---|
Access to their personal data | Give clear notice of data collection | Obtain appropriate consent to process data | Audit and update data policies |
Object to processing of their personal data | Define their data retention and deletion policies | Protect personal data via appropriate security measures | "If required employ a Data Protection Officer" |
Correct errors in their personal data | Outline their data use cases and processing purposes | Keep records of how data is processed | Train staff and contractors in privacy and data protection |
Export their personal data | Notify authorities of personal data breaches | Create and manage compliant vendor contracts | |
Erase their personal data |
Data protection is a priority issue at HugoFox. We welcome GDPR as an opportunity for all businesses and organisations that obtain, analyse or process individual data to implement and follow a standardised, consistent and improved approach to data protection. In preparation, HugoFox is undertaking a full audit of our systems, processes and products to ensure compliance with GDPR.
• Our account sign-up and login services are completed through an HTTPS/SSL secure server, and passwords use cryptography which has functions to protect your information. For more on HTTPS / SSL, see here.
• Our websites and services are hosted by Microsoft Azure, a global leader in secure hosting solutions. For more on Azure, see here.
• The payment processing services we use (GoCardless and Sage Pay) are fully Payment Card Industry Data Security Standards PCI DSS) compliant. For more on this, see here.
• Our technical development team use the latest standards, tools and platforms to ensure that HugoFox is kept at the forefront of information and data security.
For more information about HugoFox and GDPR, please contact team@HugoFox.com
Last revised on: 20 February 2018