THE EVOLUTION OF OUTSOURCING TODAY IN 2020 (PART 3 OF 4)
GDRP and how it affects businesses around the world.
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy within the EU and the European Economic Area (EEA). It also addresses the transfer of personal data outside the EU and EEA areas.
It controls how your personal information is used by organizations, businesses or the government, giving one the following rights:
The right to be informed about how your data is being used.
The right to know how your data is being accessed and have incorrect data updated.
The right to have your data erased.
The right to stop or restrict the processing of your data.
The GDPR also provides rights for when organizations use your personal data in automated decision-making processes (no human involvement) and profiling rights for more sensitive information, such as race, ethnic background, political opinions, religious beliefs, genetics, biometrics, health and sex life or sexual orientation.
Everyone responsible for using personal data has to follow strict rules called ‘data protection principles’. They must make sure the information is used fairly, lawfully and transparently for specified, explicit purposes.
Data must be handled in a way that ensures appropriate security, including protection against unlawful or unauthorized processing, access, loss, destruction or damage.
Outsourcing companies from different countries who offer specialized services within the EU and the United Kingdom have to abide by the laws of the territory.
The question also arises as to the Brexit situation and how the United Kingdom has adopted privacy laws in line with the EU so as not to be seen as a 3rd world country.
The United Kingdom General Data Protection Regulation (UK-GDPR) is thus essentially the same law as the European GDPR, only changed to accommodate domestic areas of law.