![\"\"](\"https:\/\/thamessecurityshredding.com\/blog\/wp-content\/uploads\/2019\/08\/gdpr-3438451_960_720.jpg\")
<\/p>\nThe General Data Protection Regulation (GDPR) is a set of rules, standards, principles that guide and regulate data privacy and exportation, within and outside the European Union.<\/p>\n
What this implies is that companies within the jurisdiction of the European Union and the European Economic Area must list out procedures carefully aligned with those represented in the data protection principles.<\/p>\n
Primarily, the GDPR is the host for these data protection principles and contains in itself, requirements regarding individuals' data.<\/p>\n
Thus, information such as name, cookie data, social security number, etc. would have to stay hidden according to the data protection act principles.<\/p>\n
The data protection act principles are the centre of the GDPR. Non-compliance could expose data to fraud, scams, etc. Not only that, the company would be at risk of facing severe consequences that could be damaging to it, and that\u2019s some of the internal problems. External punishments coming from the EEA are inevitable. Fines and a possible jail term cannot be escaped. All these can be avoided if one complies strictly by the GDPR.<\/p>\n
At Thames Security Shredding, we know the A-Zs of the game, and that\u2019s why you can trust us with your data.<\/p>\n
<\/p>\n
The data protection act 1998 principles are very much relevant in contemporary times. Though revised with the official legislation of the GDPR in 2018, not much has changed. Nonetheless, here\u2019s an overview of these principles.<\/p>\n
Data Protection;<\/p>\n
<\/p>\n
Under the legal policy, organizations must be fair and transparent in the collection and retaining of data. They must be able to give an account of the reason why the data was collected, and then of what use the individuals\u2019 data is needed.<\/p>\n
In more formal terms, data should be as detailed and precise as possible.<\/p>\n
<\/p>\n
This principle posits that personal data obtained by any organization must have a particular purpose for which it was created, in the first place. Like the legal principle, this policy further implies and advocates for data legitimacy and a fair process at that.<\/p>\n
<\/p>\n
The emphasis here is on relevance, limitation, and adequacy. Organizations are compelled to only obtain and withhold information that is relevant to them. Minimization is the ultimate goal for this one. If a customer unsubscribes from the company\u2019s services, his data should be reduced to the barest minimum.<\/p>\n
<\/p>\n
Companies should ensure that the information in their possession is always up to date. And when updated, all roads to the previous data should be blocked. For instance, when a customer updates his contact details, the company should not continue to use the old data. Instead, they should work with the new information and keep the same for future uses\/references.<\/p>\n
<\/p>\n
Based on this, organizations should ensure that data is not stored, longer than necessary. What this rule buttress is on time, real-time data. Rather than store unnecessary data, this principle provides that organizations destroy\/delete them. Making sure that data records are stored adequately, in place and understood, is what this principle stands for.<\/p>\n
<\/p>\n
With the retention of personal data, it\u2019s only right for security to be top-notch. This principle stresses the protection of data. It postulates that organizations should set up systems aimed at securing physical and technical data. On this, organizations should take up the full responsibilities of hiring trained personnel skilled in cybersecurity. More so, the data of those who have access to information should themselves be assessed.<\/p>\n
<\/p>\n
The GDPR expects that every organization should be directly responsible for their data subjects. If a customer were to request for specific data, the organization should be able to provide such. On the other hand, if the customer asks for his data to be deleted, then the same should be granted. However, customers only have the right to access information relevant to them.<\/p>\n
<\/p>\n
A principle that cannot be underemphasized is the transfer of data. Data must not be transferred to other countries outside the EEA and the EU. Inside the EEA, it is permissible. However, other countries should not access data relevant to the EU domain.<\/p>\n
<\/p>\n
\u2022 Conducting a background check on employees should be subject to the law.
\n\u2022 There\u2019s an option of the \u2018right to be forgotten,\u2019 should an individual request for his data to be removed from a company\u2019s database.
\n\u2022 If data is to be sent out of the EEA, the customer should consent to it.<\/p>\n
<\/p>\n
At Thames Security Shredding, we know the A-Zs of the game, and that\u2019s why you can trust us with your data. We stand for data protection and privacy, so your data remains unknown to third parties.<\/p>\n
![\"Data-Protection-Principles\"](\"https:\/\/thamessecurityshredding.com\/blog\/wp-content\/uploads\/2019\/08\/Data-Protection-Principles.jpg\")
<\/p>\n","protected":false},"excerpt":{"rendered":"
The General Data Protection Regulation (GDPR) is a set of rules, standards, principles that guide and regulate data privacy and exportation, within and outside the European Union. What this implies is that companies within the jurisdiction of the European Union and the European Economic Area must list out procedures carefully…<\/p>\n","protected":false},"author":1,"featured_media":100,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[11,9,12],"class_list":["post-97","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-data-protection","tag-data-protection","tag-data-protection-principle","tag-security-shredding"],"_links":{"self":[{"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/posts\/97"}],"collection":[{"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/comments?post=97"}],"version-history":[{"count":8,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/posts\/97\/revisions"}],"predecessor-version":[{"id":109,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/posts\/97\/revisions\/109"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/media\/100"}],"wp:attachment":[{"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/media?parent=97"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/categories?post=97"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/thamessecurityshredding.com\/blog\/wp-json\/wp\/v2\/tags?post=97"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}