The GDPR, or General Data Protection Regulation, is a set of European rules and standards related to privacy and data management.

This Regulation is aimed both at European companies and at any company doing business in Europe or with European customers.

The GDPR requires customers’ active consent and gives them new powers to monitor how their own information is stored by third parties — and establishes significant sanctions in case of non-compliance.

It requires that a compliance programme be implemented that can monitor compliance across the organization, and prove to data protection authorities and data subjects that all personal information is secure.

The person designated by the organization to be involved in all matters relating to the protection of personal data.

It means taking privacy risk into account throughout the entire process of designing a new product or service, rather than considering privacy issues only later.

It means ensuring that mechanisms are put in place within an organization to ensure that, by default, only the amount of personal data required for each task will be collected, used and stored.

Processing of personal data in such a way that they can no longer be attributed to a specific data subject.

How Filedoc helps you comply with the GDPR

The adoption of a set of best practices and security procedures in information management have become mandatory for organizations, and they must now prove that they have taken appropriate measures to ensure compliance of their personal data processing processes with the GDPR. Thus, Filedoc allows the following:

  • Locate and access stored personal data that relate to registered documents
  • Define access groups and respective access level by entity type, to restrict access to each entity’s data
  • List and edit accesses, by entity
  • Export, amend and delete personal data (complying with the “right to be forgotten”)
  • Ensure that personal data is protected and not used later