Skip to main content

All you want to know about GDPR


What is the GDPR?

The term GDPR stands for General Data Protection Regulations. The law is drawn up by the European Union to strengthen the data rights of EU residents. The objective was to complement the data protection law across all member states by making it identical.

The basic objective of law was to make it easier for the people …

1.      Discover what information organizations collect about them
2.      What those organizations use it for
3.      Empowering people to prevent unnecessary data collection
4.      Penalizing organizations for misuse of collected data

It also makes it easier and cheaper for the organizations to comply with data protection guidelines. It is also interesting to note that GDPR is regulation and not a directive, therefore, it applies automatically without turning it into the law.  

Why was the GDPR drafted?

We all enjoy lots of free stuff from likes of Google, Facebook, Twitter etc. in exchange for a wide range of personal information – name, gender, geography, email address, mobile number, political learnings and many more. Confusing terms and conditions and passive opt-out boxes made it difficult for people to understand what exactly they were agreeing to give to these tech giants.

We all have seen the misuse of user data by Facebook’s Cambridge Analytica Scandal during 2016 US elections where a third party app saw millions of users’ profile data scrapped allegedly to influence the outcome of the elections.

Jurisdiction of Regulation

It applies to almost every organization that controls or processes personal data relating to people residing in EU. Even organizations that don’t have any base in EU will be bound by GDPR if they are processing, collecting or holding data of users based in EU. As per GDPR regulation, any organization involved in the collection or processing of data will be considered as the data controller or data processor.  

The Data controllers and Processors?

The data collector could be an organization that is collecting data itself or might contract a third party to collect and process data. The data processor is the third party that collects and process the actual data based on the instruction from the data controller, therefore, its controller’s responsibility to make sure that the processor complies with data protection law. If processor breaches GDPR, the controller will be liable for financial penalties as per the regulations of GDPR.

The process and Consent under the GDPR?

As per regulation, the Controller must make sure that personal data is processed lawfully, transparently, and for a specific purpose. The user must understand: why their data is being processed and how it is being processed.
The consent needs to be active, affirmative action by the data subject, rather than the passive acceptance under current models that allows for pre-ticked boxes or opt-outs. It is the responsibility of data collector to keep a record of how and when an individual gave consent and that individual may withdraw their consent whenever he or she wishes to.

Personal Data under GDPR

Under the GDPR, the expanded definition of data now covers IP address, Economic, Cultural, Pseudonymised personal data (depends upon factor – how easy or hard it is to identify whose data it is) or health information of the individual apart from other parameters (As defined under the data protection act).


When can people access the stored data?

The regulation empowers People to access any information a company holds on them and can access their data at reasonable intervals. The controller needs to respond within a months’ time. The individual also gets right to ask …

1.       Why data is being processed
2.       How long it’s stored for
3.       Who gets to see it
4.       An individual can correct incomplete or incorrect data about them

It is the responsibility of controller to provide secure, direct access for people to review the data which controller has stored about the individual. 

Comments

Post a Comment

Popular posts from this blog

What is TRP & GRP in Television Advertising ...

Television holds the title of the largest mass medium for advertising for more than 60 years now and that designation has not been overtaken even after the entry and growth of internet medium. It is an imperative and consequential component of media planning because of its pervasiveness, impact, mass reach and targeting abilities. Albeit the world has come a long way in going digital, Television advertising still plays a paramount role when it comes to marketing products and services. Television has the properties of sight, sound, and motion that traditionally set it apart from other media such as radio or print. With its three-pronged assault on its viewers’ senses, TV is able to create broad awareness for a product or services.  So before we move ahead, let’s address a common and recent misconception that internet is replacing TV viewing. The entry of Netflix, Amazon, ALT Balaji, Viu, youtube etc. it has become a hot topic to anticipate the inevitable decay and demise of televi
5 comments
Read more

How Blockchain can change India’s entertainment industry

Digital technologies have played a big role in transforming the way content is produced and distributed in the entertainment industry over the past few years. Despite the many advancements, some challenges remain. The issues of revenue leakages, rights/ license management across locations, censorship and monopolistic distribution practices still exist and, in some cases, have grown. For instance, the Indian film industry, the world’s largest by a number of films produced, loses close to Rs 18,000 crore in piracy and less than half of the movies produced get a chance to reach the audience. The existing technology and infrastructure have robbed the music industry as well to the extent of about INR 6500 crore in revenue every year. In 2017, pirated music was downloaded nine billion times. The few of major hurdles that the Indian entertainment industry currently facing is the 1) Issue of funding and 2) The current distribution model. Many independent artists, actor
3 comments
Read more

Basic Formulas : Digital / Internet Advertising

Mathematics is everywhere. Let it be a school life or our professional life. So, let’s try to understand the application of mathematics in internet world. What is CPM? The term CPM stands for Cost Per Mile which means cost per 1000. Its one of the most popular and used term in internet advertising space. This is the cost which advertiser pay to agency or publisher for publishing/serving 1000 impressions. Let’s take an example to understand it better. Example: Let’s assume that “Cadbury” wanted to run banner ad at CPM of INR 350 and wanted to serve 350000 impressions during the month time. What will be the total cost of client for this campaign? Total Cost to Cadbury = CPM X (Impressions)/1.000) So, Cost to advertiser will be = 350 X (3,50,000/1,000) Total cost to advertiser will be = INR 1,22,500 Let’s have a quiz here…what will you find out CPM if impression and cost is given: CPM = Cost to advertiser X 1000/Impressio
21 comments
Read more