The General Data Protection Regulation, at its most basic, specifies how personal data should be lawfully processed, including how it’s collected, used, protected or interacted with in general.
It’s meant to strengthen data protection for all people whose personal information fall within its scope of application.
As we said, these are just the basic elements.
For instance, you may also need to add the name and contact details of your Data Protection Officer (DPO), or EU representative if that applies to your company.
This article is a part of our series on GDPR and GDPR compliance. Read also:
Non-compliance can have strong consequences.
GDPR is well-known for its hefty fines, which can amount up to EUR 20 million (€20m) or 4% of the annual worldwide turnover – whichever is greater. But perhaps equally as concerning are the other potential sanctions: official reprimands (for first-time violations), periodic data protection audits and liability damages.
iubenda set of tools can help you achieve GDPR compliance, in minutes. You can access our full range of GDPR solutions here.
You can either add any of our +1700 pre-created clauses, or easily write your own custom clauses using the built-in form.
GDPR compliance for your site, app and organization