What Does It Mean To Be GDPR Ready?

September 6, 2018

The simplest explanation of GDPR is that it is a set of rules that protect individuals’ privacy. The legislation regulates the processing of EU residents’ and citizens’ personal data, including collection, use, transfer, monitoring, tracking and even viewing of personal data. It went into effect on May 25, 2018.

Data subjects, as individuals are called in GDPR, have more rights to control their data. This creates a massive compliance challenge for U.S. companies processing data from European citizens. 

Does GDPR Apply to You?

GDPR applies to any organization that processes the data of EU residents or citizens. Your company doesn’t necessarily need to be based in the EU. For example, if you’re holding a medical conference in Kansas and a German citizen attends, the data you collect in the U.S. would not be subject to GDPR. Any data you collect while that German citizen is still in the EU, however, would be subject.

GDPR applies to you if you:

  • Offer goods/services in the EU
  • Monitor EU data subjects’ behavior
  • Collect personal data from EU residents
  • Collect personal data only as part of a marketing survey
  • Have EU customers
  • Target data subjects in an EU country (generic marketing, i.e. not marketing specifically to EU residents)

Basic Definitions

Personal Data – Any information relating to an identifiable subject, or data subject. This data doesn’t need to be sensitive or secret. Name, email, ID number, photo, location and IP address are included under the umbrella of personal data. 

Controller – The organization which, alone or jointly with others, determines the purposes and means of the processing. 

Processor– Any organization that processes personal data on behalf of the controller. You can be both the controller and the processor if you’re collecting and processing the data and determining what it’s for.

The Controller-Processor Relationship

The Controller:

  • Determines purposes and means of processing
  • Can only use GDPR-compliant Processors
  • Has primary responsibility for compliance

The Processor:

  • Processes data on Controller’s instructions
  • Assumes liability of sub-processors
  • Deletes/returns data on request
  • Works with compliance audits
  • Takes reasonable steps to secure data
  • Notifies controller of data breach
  • Informs controller if processing instructions infringe on data subject’s rights

What Should You Be Doing At This Point?

First things first, you need to assess whether GDPR applies to you. Under GDPR, you have to disclose what you’re collecting, how you’re storing it and what you’re using it for in order to get consent from data subjects.

Then, you should determine what level of compliance is needed. Do a gap analysis of what you’re doing now and what the GDPR requires you to do.

Once you know your level of compliance, develop a plan for compliance. You should decide how you’re going to provide informed notice and get informed consent.

Finally, you should implement the plan, including:

  • Consult with outside counsel on legal obligations to make sure your plans are fully compliant
  • Update your website terms of use and privacy policy. Must present it properly that’s compliant with GDPR so that it is enforceable.
  • Make sure your vendor agreements cover data processing
  • Update internal processes documentation
  • Review your cyber insurance policy

 

Don’t miss any event news! Sign up for any (or all) of our e-newsletters HERE & engage with us on TwitterFacebookLinkedIn & Instagram!

Add new comment

Partner Voices
One of the most iconic names on the Las Vegas Strip just got an upgrade. Mandalay Bay has everything that your business needs from a refreshed convention space designed to inspire productivity and creativity, to an impressive selection of world-class restaurants and amenities. If you're looking for a venue that's both inviting and innovative, you have to be here. New Wave Experiences Mandalay Bay continues to invest in a new wave of enhancements both in the convention space and within the resort as a whole. New restaurant openings including Orla by Michael Mina, drawing inspiration from the award-winning chef’s childhood in Egypt and with flavors and décor inspired by the spices found in markets common to coastal Mediterranean towns, as well as Caramá by Wolfgang Puck, bringing the essence of Italy and spirit of Wolfgang into one concept, are recent additions. The Four Seasons Hotel Las Vegas also experienced a recent remodel of all 424 rooms. Swingers, a high-end, adults-only golf and entertainment concept will debut in Fall 2024. Enhanced Technology Creating a truly effective conference venue requires careful thought into what a business needs: the right technology, capacity, and inspiration to bring ideas to the next level. As part of the resort’s refresh, Mandalay Bay implemented state-of-the-art technology upgrades, installing cutting-edge Cat6A Ethernet cabling throughout the convention center. This advancement doubles the frequency of data transmission, enabling lightning-fast speeds up to 9400% faster. The convention center now boasts 11 dynamic digital walls, spanning up to 24' x 13', strategically positioned for brand placements, sponsorships and targeted event messaging. Additionally, attendees can benefit from 20 double-sided 55" mobile flexible display units, facilitating effortless navigation to meeting rooms and events. RFID locks were installed on all meeting room doors, and over 200 motion detection cameras have been placed throughout the space. Refreshing New Design & Fine Art The newly remodeled convention space provides a bright and vibrant atmosphere that complements Mandalay Bay's tropical-inspired brand. Featuring white-washed walls and ceilings adorned with bold floral patterns in cerulean and coral tones, the space is complemented by warm walnut accent walls. In addition to the redesign of all pre-function spaces, meeting rooms and ballrooms, Mandalay Bay's 1 million square feet of exhibit space has undergone a rejuvenation, including new paint, covered pillars and relocated strobe lights. Sustainable Spectacles Mandalay Bay is committed to Focused on What Matters and creating more responsible meetings. Refillable water stations all available around the resort, cutting unnecessary plastic usage from single-use bottles. The Mandalay Bay campus’ recent upgrades represent a bold step forward in redefining the Las Vegas experience. With a focus on innovation, sustainability, and unparalleled service, Mandalay Bay sets a new standard for excellence in business hospitality. Whether you're seeking cutting-edge conference facilities, world-class dining options, or simply a luxurious retreat, an unparalleled meeting experience awaits.