{"id":1069,"date":"2018-10-22T10:50:23","date_gmt":"2018-10-22T09:50:23","guid":{"rendered":"http:\/\/frenchtouchdreamin.com\/?p=1069"},"modified":"2023-11-04T17:40:18","modified_gmt":"2023-11-04T16:40:18","slug":"gdpr-compliance-in-the-post-enforcement-period","status":"publish","type":"post","link":"https:\/\/frenchtouchdreamin.com\/index.php\/2018\/10\/22\/gdpr-compliance-in-the-post-enforcement-period\/","title":{"rendered":"Own{Backup} : GDPR Compliance in the Post Enforcement Period"},"content":{"rendered":"<p><a href=\"https:\/\/www.ownbackup.com\/\" target=\"_blank\" rel=\"noopener\"><img class=\"size-full wp-image-904 aligncenter\" src=\"http:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup.png\" alt=\"ownbackup\" width=\"250\" srcset=\"https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup.png 500w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup-300x154.png 300w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup-212x109.png 212w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup-400x206.png 400w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup-355x182.png 355w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2017\/05\/ownbackup-306x157.png 306w\" sizes=\"(max-width: 500px) 100vw, 500px\" \/><\/a><\/p>\n<p><span style=\"font-weight: 400;\">The GDPR enforcement date has passed and, as you might have already heard, well-known companies are feeling the impact of not being fully prepared. These companies are facing potentially significant costs from lawsuits, fines, and from having to speed up the development and deployment of their GDPR compliance strategies.<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">Data protection has also gone global. Governments around the world, including Canada and Australia, have already released regulations similar to GDPR to better protect their citizens\u2019 data privacy and security. Numerous experts predict that in coming years laws resembling the GDPR will be established outside the EU.<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><b><\/b><\/p>\n<p><b>GDPR Violations Are Expensive<\/b><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">To review, penalties for non-compliance jointly apply to both Data Controllers and Data Processors, as both roles have responsibilities under GDPR. Infringements under GDPR carry administrative fines of up to \u20ac20 million or four percent of total yearly worldwide revenue, whichever is higher. Furthermore, there could be individual lawsuits, class-action lawsuits, and personal liability claims against your organization. There are also business costs and impacts, from reputation damage, which could lead to lost business, to competitors who have better prepared themselves for GDPR.<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">It is difficult to say exactly how\u00a0GDPR non-compliance\u00a0will impact your organization. The specific consequences depend on:<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">The size and risk categorization of the impacted personal data<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">How long the infringement endured<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">How many individuals were affected and the level of impact on EU individuals<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Repeated, negligent, or reckless mismanagement of data showing trends of data irresponsibility to comply with the regulation<\/span><\/li>\n<\/ul>\n<p><span style=\"font-weight: 400;\">Some violations can be deemed lower level, such as Article 32\u2014security of processing, or upper level such as Article 7\u2014right to consent, Article 16\u2014the right to rectification, Article 17\u2014right to erasure, and Article 20\u2014right to data portability. These specific GDPR articles are grouped under each of these violation categories as you can see here:<\/span><\/p>\n<p><img loading=\"lazy\" class=\"size-full wp-image-1070 aligncenter\" src=\"http:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost.png\" alt=\"OwnBackup - blogpost\" width=\"770\" height=\"296\" srcset=\"https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost.png 770w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-300x115.png 300w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-768x295.png 768w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-212x81.png 212w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-400x154.png 400w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-355x136.png 355w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-306x118.png 306w, https:\/\/frenchtouchdreamin.com\/wp-content\/uploads\/2018\/10\/OwnBackup-blogpost-642x247.png 642w\" sizes=\"(max-width: 770px) 100vw, 770px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p><b>Three More Business Effects of GDPR<\/b><b><br \/>\n<\/b><\/p>\n<ol>\n<li style=\"font-weight: 400;\"><b>End-User Empowerment<\/b><span style=\"font-weight: 400;\">\u2014Companies must implement processes to support end-user empowerment of their Data Subject&#8217;s own data. End users should have transparency into how their data is stored and how they can opt out<\/span><\/li>\n<li style=\"font-weight: 400;\"><b>Consent Management<\/b><span style=\"font-weight: 400;\">\u2014How and where did your company obtain consent to store and process a Data Subject&#8217;s data? For how long was that consent granted?<\/span><\/li>\n<li style=\"font-weight: 400;\"><b>Additional Roles<\/b><span style=\"font-weight: 400;\">\u2014Companies have to prove they are handling data correctly, meaning increased monitoring and documentation. Some, particularly larger companies, will hire data protection officers to handle GDPR compliance. Additionally, personnel in the legal and technology sectors such as lawyers, data experts, and programmers are in high demand as companies seek to gain and maintain GDPR compliance.<\/span><\/li>\n<\/ol>\n<p><span style=\"font-weight: 400;\"><br \/>\n<\/span><span style=\"font-weight: 400;\">After speaking with a lot of customers and others in the industry about GDPR our team has defined four key areas of GDPR compliance for Salesforce Backups that we see companies struggling with in their GDPR compliance strategies:<\/span><\/p>\n<ol>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Transparency;<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Data Subject Access Requests;<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Backup retention; and<\/span><\/li>\n<li style=\"font-weight: 400;\"><span style=\"font-weight: 400;\">Immutable backups.<\/span><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<p><b>Download\u00a0<\/b><a href=\"https:\/\/pages.ownbackup.com\/gdpr-and-your-salesforce-backups\"><b>The GDPR and Your Salesforce Backups<\/b><\/a><b>\u00a0<\/b><b>eBook for more on these key compliance areas and helpful guidance on steering your organization towards GDPR compliance.<\/b><\/p>\n<p><b>Visit our booth at French Touch Dreamin\u2019 to learn more about how OwnBackup can support GDPR compliance for your Salesforce backups.<\/b><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The GDPR enforcement date has passed and, as you might have already heard, well-known companies are feeling the impact of not being fully prepared. These companies are facing potentially significant costs from lawsuits, fines, and from having to speed up the development and deployment of their GDPR compliance strategies. Data protection has also gone global. [&hellip;]<\/p>\n","protected":false},"author":3,"featured_media":1989,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[37],"tags":[],"_links":{"self":[{"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/posts\/1069"}],"collection":[{"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/comments?post=1069"}],"version-history":[{"count":5,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/posts\/1069\/revisions"}],"predecessor-version":[{"id":1990,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/posts\/1069\/revisions\/1990"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/media\/1989"}],"wp:attachment":[{"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/media?parent=1069"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/categories?post=1069"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/frenchtouchdreamin.com\/index.php\/wp-json\/wp\/v2\/tags?post=1069"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}