Blog » iVvy Making GDPR Compliance Easy
The new General Data Protection Regulation out of Europe requires businesses to meet additional obligations for their data security and individual privacy.
As part of these new laws, all businesses (whether they are from within the EU or not), will need to implement a range of enhanced protection procedures when dealing with individual data in the European Union.
This will impact both the organisations like iVvy who are the “Data Processors”, as well as your company, the “Data Controller”.
Consent – You will be required to obtain consent to collect personal information and outline what you intend to do with the information. For instance, you cannot collect email addresses for registrations for an event and then use those email addresses for marketing additional events, unless you have had prior consent to future marketing.
Access – You are required to provide an individual with copies of the data your store on them.
Data Security – The data needs to be stored in secure systems, like iVvy.
Transfer of Data – There are some laws that prohibit whether you can transfer the data outside of the EU.
iVvy’s Commitment & Preparation
As a Data Processor, in order for iVvy to meet its obligations and to assist you in meeting yours, we have already released, and will be releasing a range of additional features prior to the commencement of the law on the 25th of May, 2018.
These are the new features you will have access to within iVvy:
For event websites:
General Data Security & Accountability: