GDPR, METTITI IN REGOLA CON INFOCERT

Achieve your GDPR compliance with InfoCert

As the leading Qualified Trust Service Provider in Europe, we provide our customers with services and solutions facilitating the full adherence with GDPR requirements


↓ Discover more

General Data Protection Regulation (GDPR) – the new European law for the processing and protection of persona data – came into the force on May 25th, 2018.

It imposes to all Companies to adapt their procedures, legal documentations and IT Systems in order to avoid expansive penalties.

TIMELINE & GOALS

GDPR timeline

GDPR’s main goals are:

  • increase protection of personal data by encouraging the use of new technologies for the activities of processing, treatment and archiving;
  • make the European market safer and more competitive for companies;
  • put in place technical and organizational measures to guarantee the right level of security and risk.

Penalties in case of breach:

sanzioni gdpr

  • up to € 10 million or up to 2% of turnover in case of not compliance with Regulation’s obligations;
  • up to € 40 million or 4% of turnover in case of not compliance with the basic principles of data treatment.

FROM GPDR’S REQUIREMENTS
TO INFOCERT’S SOLUTIONS

GDPR imposes to all Companies to adapt their procedures, legal documentations and IT System to comply with a range of requirements.

Principle of Accountability
accountability

the controller shall implement appropriate technical and organisational measures to ensure and to be able to demonstrate that processing is performed in accordance with this Regulation. Those measures shall be reviewed and updated where necessary.

Data protection
by design and by default
by design

The controller shall implement appropriate technical and organizational measures for ensuring that, by default, only personal data which are necessary for each specific purpose of the processing are processed.

Risk analysis and
data protection impact assessment
risk analysis

When a type of treatment may present a high risk for the rights and freedoms of physical persons, the data controller will have to early carry out an assessment of the treatment’s impact related to personal data protection.

Data breach communication
to the interested party
data breach

When the violation of personal data may implicate an high risk for the rights and freedoms of phisical persons, the data controller must report the violation to the interested party without unjustified delay.

Certification
 
certification

The adoption of data protection certification’s mechanisms and data protection seals and timestamps is encouraged by the GDPR, to the extent that it helps data owners and controllers to comply with the Regulation.

Right to data portability
portabilità

The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided.

Data processing records and archiving
registri

Personal data must be archived in a form that allows identification of data subjects for no longer than necessary for the purposes for which personal data have been processed.

THE INFOCERT’S SOLUTIONS FOR GDPR

GDPR solutions

With the entry to the force of GDPR, the data processing became a matter of Trust. As a Qualified Trust Services Provider, InfoCert enables Companies in properly managing the entire process of data handling facilitating the full adherence with GDPR requirements.

NOTIFICATION MANAGEMENT

For a massive delivery of customized emails in case of data breach or treatments’ update.

INFOCERT LOG

A single solution for the certification of all activities performed on personal data.

SECUREDRIVE

The cloud encrypted solution to store and share personal data in line with GDPR goals.

GDPR EDUCATION

Training for responsible of data management (DPO - Data Protection Officer).

STRONG AUTHENTICATION

Ensure access, portability, adjustment and cancellation of data with secure processes, in full compliance with the GDPR.

CONSENT MANAGEMENT PORTAL

To manage privacy documentation and treatment records, linking each data to the specific provided consent.

PRIVACY PORTAL

The portal to properly manage treatment records and all the privacy documentation in compliance with GDPR.

DISCOVER MORE ABOUT INFOCERT OFFERING FOR GDPR:

Contact us for more information