|
|
Indirectly to identify a person. Who should apply this regulation? The rules will have to apply not only for organizations based within the European Union, but also for organizations based outside the EU and which process data of citizens residing in the Union. What are the most relevant changes? The authorization to consent to the processing of sensitive data.
Can no longer be ambiguous, it must in fact specify the use that will be made of the data. In the case of personal data, it will be sufficient to inform unambiguously what the use of the data will be, without C Level Contact List necessarily asking for authorization. Users will have the right to request whether their data is used and for what purpose ( Right to Assess they will also have the right to withdraw.
Consent to data processing ( Right to be Forgotten ). Whoever controls the data , however, has the right to obtain only those that are indispensable for the completion of the purpose. Obviously those who do not comply with the regulation will have to respond to the damage with financial penalties. How much can the fines amount to? For the most serious violations of the regulation, penalties of up to 4% of the total annual turnover or 20 million euros are foreseen.
|
|
發表於 2023-11-29 14:58:26