With only a few days to go for the GDPR to go into effect, Google on Friday listed the multiple measures the company has taken to ensure its cloud services comply with data privacy mandate.
Among them are updates to the company's data processing terms and conditions, new data portability features and updated terms pertaining to breach disclosures and incident reporting.
GDPR, often seen as one of the biggest ever privacy mandates requires organizations handling personal data belonging to EU residents to implement certain controls for protecting the data. It requires companies to have clear privacy policies, inform individuals about any personal information of theirs that is being collected and the purpose of that collection. GDPR requires companies handling EU resident data to obtain informed consent from users before collecting, using or sharing the data and imposes strict new requirements for breach disclosures.
The mandate gives individuals unprecedented access and control over their personal data. Among other things, GDPR gives EU residents the right to ask companies such as Google for a copy of any of their personal data that might have been collected. Which really shows compliance with data portability.
The mandate gives EU residents the right to ask companies to correct any errors that might exist in the data. Personal data, under GDPR, needs to be portable so the data can be easily transferred to others when a user requests it.
To ensure compliance with GDPR's data portability requirement Google has introduced a new data export feature that makes it easy for businesses to download a copy of their business data from G Suite and Google Cloud Identity services, Frey and Crandall said.
This is an example of a company taking this serious. Read the full article here.
If you are struggling to meet compliance, or if you need help making the transition. Reach out to us, we at IDLink can help you reach compliance and your goals regarding data portability. Visit us at www.idlink.eu