What should your company do?

If you haven’t already made preparations for the General Data Protection Regulation, or just GDPR, or done so right after, now is the time to take action. There are many things a company must do, to be GDPR compliant, here are a few steps to get you started:

    • Map your data
      Mapping the personal data in your entire business, where it comes from, what you do with it, who has access to it and if there are any risks. This process helps structure your data policy and is important for GDPR compliance.
    • Determine what data you keep
      Keeping more information than necessary takes up space and can make it difficult navigating to find what you need. Removing any data that isn’t being used in any way frees up space and makes it easier finding what you need. Before you start deleting any data, go through the data with these questions in mind:

      • Why is this being archived instead of erased?
      • Why are we saving this specific data?
      • What are we trying to do with these categories of collected personal information?
      • Can we increase our financial gain by deleting this information instead of encrypting it?
    • Security measures
      Your infrastructure should include safeguards to help contain any data breaches. Guarding the data and taking quick action to notify individuals if a breach occurs. If you outsource some or all of your services, you should check with your suppliers to make sure they have proper security measures put into place.
    • The handling of personal data
      As was mentioned in the previous article, individuals have gained 8 basic rights. Therefore, you should establish policies and procedures for handling any situation that might occur.

      • How individuals give legal consent for you to use their data?
      • What should the process be when an individual wants their personal data deleted?
      • How is the deletion of data across all platforms ensured?
      • How is a data transfer handled?
      • What will you do to ensure that the individual requesting a data transfer, is the person who they claim to be?
      • How should a data breach be communicated?

What can GlobeCom do for you?

GlobeCom are specialized in handling data and equipment, be it either new, used or refurbished. With the implementation of GDPR, the handling of data after equipment have reached EOL (End of Life) or your company have decided to upgrade or make changes to your setup, have become increasingly important. Any used equipment needs to be data wiped with certification to prove that the process has been done correctly and ensure a complete data wipe. GlobeCom have the capacity to handle all your used equipment to a competitive price and with a 100% guaranteed data wipe procedure with all the required certifications, this ensures both your company that your sensitive data is handled properly and securely.

GlobeCom is able to pick up the equipment at your location and handle the transportation, the data wipe process is handled by professional and experienced technicians, to read more about how GlobeCom can help you with your data destruction please visit Globecom Data Destruction or contact us at datadestruction@globecom.eu.

In addition to being able to data wipe your equipment, we are also able to buy or destroy your used equipment. Any bought equipment is either reused or refurbished any in return GlobeCom can offer you new, used or refurbished equipment either for you to buy, rent or lease making the transition from your old equipment to the new equipment effortless and secure, to learn more about our services please visit our IT enterprise page or contact us using the contact form to the right.

Disclaimer: Any and all advice or tips given in this article is not considered legal advice and is for information purposes only.

GDPR and Data Destruction – Part 2 of 2

Leave a Reply

Your email address will not be published. Required fields are marked *

 
en_GBEnglish (UK)
en_GBEnglish (UK)