The General Data Protection Regulation (GDPR) comes into force on 25 May 2018 and will replace the current Data Protection Directive. The GDPR is an EU Regulation which will govern the processing of Personal Data from the European Economic Area (EEA). Despite Brexit, the UK Government has confirmed that the GDPR will apply to the UK.
The GDPR is intended to strengthen the rights of individuals and provide further protection around how Personal Data is processed and protected. Under the GDPR, Replicon and our customers both have responsibilities. Replicon’s customers are defined as Data Controllers because they determine the purposes and means of the processing of their employees’ and contractors’ Personal Data (i.e. how and why the data is processed). Replicon processes this Personal Data on behalf of its customers, and is therefore defined as a Data Processor. Data Controllers and Data Processors have distinct responsibilities for the protection of Personal Data and compliance with other aspects of the GDPR
Replicon takes compliance seriously, and looks forward to partnering with our customers so that we can each meet our responsibilities under the GDPR. Replicon is preparing for 25 May 2018, when the GDPR takes effect. Further information will be published regularly on Replicon’s progress as well as steps we are taking to provide our customers with the necessary tools they need to be ready for the new Regulation.
Want to learn more about compliance? Download our Labor Law Compliance Infographic for more information.