GDPR (GENERAL DATA PROTECTION REGULATION)
Introduced on 25th May 2018 the General Data Protection Regulation (GDPR) is the most significant legislative change in Europe relating to the data protection laws since the EU Data Protection Directive 95/46/EC in 1995.
GDPR extends the scope of EU data protection law to all foreign companies processing the data of EU residents and defines a new set of “digital rights” for EU citizens.
WHAT IS GENERAL DATA PROTECTION REGULATION (GDPR)?
The General Data Protection Regulation is EU law that replaces the Data Protection Act 1998 in the UK and the EU Data Protection Directive 95/46/EC 1995. It places greater obligations on how organisations handle personal data.
WHO DOES THE GDPR APPLY TO?
The GDPR applies to organisations and individuals operating within the EU, whether or not they are based in the EU. This means it applies to organisations outside the EU that offer goods or services to individuals within the EU.
The GDPR defines ‘personal data’ as any information relating to an identifiable person who can be directly or indirectly identified in a particular reference to an identifier.
The GDPR definition provides for a wide range of personal identifiers, some of which are obviously personal data (such as names and address), as well as data which can be used to identify an individual indirectly (for example an IP address).
DOES THE GDPR APPLY TO ME?
Yes, if you are a customer of ica.scot and are processing personal data of any EU individual or entity when using our services.
WHAT IS ICA.SCOT ROLE UNDER GDPR?
ica.scot act as both a data processor and a data controller under the GDPR.
ica.scot (Data Controller): We act as a data controller for the EU customer information which we collect to provide our services and to manage them (such as customer support). Information we collect on our customers includes customer name and addresses.
ica.scot (Data Processor): When a customer uses our services, we process the personal data provided by the customers on their behalf and will in addition comply with our customers instructions to ensure that we comply with the new legal obligations that apply to data processors under the GDPR.
DOES ICA.SCOT COMPLY WITH GDPR?
We have performed considerable investigation and analysis into the operation of our business and endeavoured to ensure we comply with the new requirements imposed by the GDPR.
WHAT PERSONAL DATA DO YOU COLLECT FROM YOUR CUSTOMERS?
All data collected and stored by ica.scot is given to us voluntarily. When customers sign up to our services or request support, we collect and store contact information such as name, email address, phone number and address.
Other identifying data is also collected such as IP Address which allows us to provide our services and support.
HOW DO WE HANDLE RIGHT TO BE FORGOTTEN REQUESTS?
Customers may request to deactivate their account and remove all personal data we have collected and stored.
Please contact our support team via our client area for further instructions.
HOW CAN I FIND OUT MORE ABOUT YOUR GDPR COMPLIANCE?
For further details about our GDPR implementation and compliance please contact us through our ticketing system.