All businesses collect data about customers and staff however, some of this data is considered to be personal, and therefore subject to privacy laws. In 2014, a disgruntled Morrisons employee leaked contact information for staff and customers. The business was fined as it had violated privacy laws. A number of privacy identification of target audience laws across the world such as the EU’s General Data Protection Regulation (GDPR), use this definition of personal data.
This includes information about an individual’s activities, habits and associations that could be used to identify them. Names and addresses, emails addresses, and phone numbers can be used to identify a person as well as photographs, videos, as well as recordings of conversations with your employees and customers. The GDPR also requires that you protect sensitive personal information, and requires specific disclosure and consent requirements on it.
A variety of privacy laws around the world offer greater protection for sensitive data. This might include health, biometric, or political association data. You usually need express unambiguous and unambiguous consent to process sensitive data and the degree of security you have to provide will differ based on the laws of the jurisdiction you reside in.
You might need to take inventory of all laptops, computers, digital copiers and other equipment in your workplace to determine where you keep your personal information. It is recommended to check your file cabinets, computer systems and the home computers, flash drives mobile devices, and other equipment utilized by employees. You should also take into consideration the personal information your business receives from third parties and suppliers.
Recent Comments