The General Data Protection Regulation (GDPR) comes into effect across the European Union on 25th May 2018. The GDPR has been designed to meet the requirements of the digital age based on privacy by design and taking a risk-based approach.
The broader use of technology brings with it new definitions of what constitutes personal information and a vast increase in cross-border processing. The new Regulation aims to standardize data protection laws and processing across the EU; affording individuals stronger, more consistent rights to access and control their personal information.
At Optimal Workshop, we’re committed to ensuring the security and protection of the personal information that we process and to provide a compliant and consistent approach to privacy. We have always had a robust and effective privacy program in place. However, we recognize our obligations in updating and expanding this program to meet the demands of the GDPR.
We’re dedicated to safeguarding the personal information we manage and in developing a privacy roadmap that’s effective, fit for purpose and demonstrates an understanding of and appreciation for the new Regulation. Our preparation and objectives for GDPR compliance are detailed further below.
How we are preparing for the GDPR
We already have a consistent level of data protection and security across the company, however, we’re updating and expanding this work to prepare for the GDPR.
Our preparation includes: -
Data subject rights
In addition to the policies and procedures mentioned above that ensure you can enforce your privacy rights, we are developing easy to access information about how you can enact your rights.
Information security, technical and organizational measures
We take the privacy and security of individuals and their personal information very seriously and take every reasonable measure and precaution to protect and secure the personal data that we process. We have an ongoing security program in place to ensure we continue to follow best practice guidance.
Optimal Workshop has designated a Data Protection Officer (DPO) and has appointed a Data Privacy team to develop and implement our roadmap for complying with the GDPR. The team is responsible for promoting awareness of the GDPR across the company, assessing our GDPR readiness, identifying any gap areas and implementing the new policies, procedures and measures.
Every person in the Optimal Workshop team has been involved in our GDPR preparation plans, and we’re making sure there's continuous awareness and understanding across our workplace.
If you have any questions about our preparation for the GDPR, you can reach out to our DPO on firstname.lastname@example.org