You have probably seen, heard, or read that, effective May 25, 2018, the EU General Data Protection Regulation (GDPR) will be in force. This landmark regulation is meant to ensure that individuals have greater transparency and control over the ways that businesses collect and use their personal information; Rigor wholeheartedly supports this regulation.
Suffice to say that it is a sweeping regulatory shift coming out of the EU, but that has implications far beyond the geographic boundaries of Europe.
Beyond just following the law, we see this as a momentous time to live out our core value of “Do the Right Thing” and help users own their data and what happens with it. In this blog, we will explore what the GDPR is and how we are getting ready for it.
What is the GDPR?
The GDPR is a sweeping law passed in the EU that changes the relationship between individuals and companies with respect to how their data is collected, processed, and used.
It applies not only to EU-based companies, but also to organizations that do business with EU citizens. The GDPR consolidates some of the ideas underpinning the “right to be forgotten” and expands upon them by ensuring that organizations are more transparent and forthright in communicating their intentions behind the data they collect from individuals.
The GDPR ensures that these rules are consistent across all 28 EU member states and ensures that EU citizens have the right to know (and consent) to what businesses collect, and, provided this data is not for legitimate or other legal purposes, can request that it be deleted. Within the context of the GDPR, Rigor is a data processor acting on behalf of its customers. You can find a full summary of all 99 articles here or you can learn more about the GDPR on the official FAQ site.
How Rigor is getting ready
As an organization, we have been conducting intensive research into the implications and benefits of the GDPR. Additionally, we have engaged outside partners and experts to work with us on our approach and compliance efforts to ensure that we understand and are implementing best practices.
As a result of these efforts, before May 25th you’ll start to see a few changes in our application and on our website. These changes are meant to ensure our compliance as well as meet the enhanced requirements for transparency while still honoring your preferences as a user. In other words, we are constantly revisiting our product strategy and design to ensure that we’re both exceeding your expectations as web perfectionists and meeting the highest levels of privacy and security standards.
Rigor’s data processing addendum for our customers and vendors processing information on behalf of EU and Swiss citizens, as well as our privacy and security policies take into account the expanded protections in the GDPR.
What can you do?
Review our revised terms and conditions and cookie policies that will be on our site over the coming weeks.
Know how your organization is affected: ensure that you have reviewed your internal processes, data collection policies, and compliance mechanisms, as applicable.
Update your username and passwords (make them long!) – OK, this is not GDPR specific, but just good practice!
We at Rigor fully support the EU’s efforts and are excited to bring these changes to our users. We have fully embraced and integrated the GDPR spirit into our product and our strategy. We are looking forward to maintaining our focus on performance and making the web a faster place for all.