Our GDPR Commitment
What is GDPR?
The General Data Protection Regulation (GDPR) is a set of laws that were created to protect the personal data of European Union (EU) citizens. The Council of the European Union, European Parliament, and the European Commission joined forces to help people have better control over their personal data.
Officially approved by the European Parliament in 2016, the EU allowed a two-year grace period for companies and organizations to comply with the new regulations. Therefore, as of May 25, 2018, any business not complying with the new GDPR laws will be breaking the law.
Who Is Affected by the GDPR?
Any business operating within the EU and any company that does business, or hopes to do business, with citizens of the European Union must comply with the new laws. Even companies outside the EU are affected if they offer goods or services to citizens of the EU, and anyone who holds personal data of EU citizens can be penalized as of May 25, 2018.
What Sort of Data Falls under the GDPR?
Any information classified as personal details that can be used to identify a citizen of the EU is protected by the GDPR and includes, but is not exclusive to, the following data:
- Name
- Photo
- Email address
- Social media posts
- Personal medical information
- IP addresses
- Bank details
Minors cannot legally grant consent to use their personal data; therefore, parents or guardians of children ages 16 and under must be asked for permission before a company can use the minor’s data.