GDPR Training

What is the GDPR?

 

The GDPR, also known as the General Data Protection Regulation, is a European Union law designed to strengthen both the security and privacy of personal data belonging to any citizen of the EU member states. Here are a few other important facts about the GDPR:

  • It went into effect on 25 May 2018.
  • It replaced the badly outdated collection of Data Protection laws.
  • It covers any entity which collects, processes or stores the personal data of any citizen of the EU.
  • Failure to comply could result in costly fines.

What is "personal data"?

Personal Data is defined as any information which can be used to identify a particular individual, such as:

  • Names
  • Identification Numbers
  • Location Data
  • Medical Information
  • Economic, Cultural or Social Identifiers

How can the GDPR protect personal data?

The GDPR can protect personal data by requiring businesses who collect, process or store that data to:

Ensure that it is properly secured

Have a clear data protection policy

Provide breach notification

How can you help?

Here is what you can do to help us be compliant with the GDPR:

  • Participate in awareness training, like you're doing now.
  • Treat everyone’s personal and sensitive information in the same manner as you’d want them to treat your data.
  • Do not reference the subject or content of sensitive or confidential data publically or via systems of communication outside the control of your organization.
  • If you lose a device or data, report it, don't hide it!

Why is compliance important?

Fines for non-compliance may reach as high as:



€20,000,000.00

OR

4% of your organization's total annual turnover.


Fines for non-compliance may reach as high as:

Good Practices

Decide whether each of the practices below is good or bad, in regards to keeping sensitive customer information safe. (Drag and drop)

Bad

{{badList1.title}}
{{badList2.title}}
{{badList3.title}}

Good

{{goodList1.title}}
{{goodList2.title}}
{{goodList3.title}}
 

Choices:

Leave Workstation Unlocked
Maintain Strong Passwords
Report Suspicious Behavior
Answer Suspicious Emails
Email Unencrypted Client Data
Lock File Cabinets

Great job! Click the Continue arrow to continue.

Things to Remember:

  • The General Data Protection Regulation went into effect on 25 May 2018.
  • The GDPR applies to every organization which handles the personal data of any EU citizen, even if that organization is not located in the EU.
  • Failure to comply with the GDPR can result in fines of up to 20 Million Euro or 4% of the entity’s global gross revenue whichever is higher!
  • Treat personal data with the appropriate level of respect.
Continue
Go back