What is GDPR?
GDPR is a regulation that requires businesses to apply additional personal data governance and protect the privacy of EU citizens for transactions that occur within EU member states. Non-compliance fines can go up to 20 million Euros or 4 percent of annual global turnover, whichever of both is highest. Under the new EU rules, any third-party processor that processes customer data will need to be in compliance.
Where and when does GDPR go into effect?
Enforcement is to commence on April 25, 2018. It is highly recommended that you audit your internal processes and operational controls, as well as that of your third-party processors ASAP. The GDPR imposes rules on organizations that offer goods and services to people in the European Union (EU), or that collect and analyze data tied to EU residents, no matter where those businesses are located.
Why is GDPR important?
As a third-party data processor, Logicbroker is a platform that stores and processes personally identifiable information (PII) on behalf of a controller. A controller is defined by the GDPR as an entity that determines how that data will be processed and for what reason. It’s important that you audit your third party relationships and any platform that touches PII. If your third party processor(s) is not in compliance, your organization is in direct violation.
What is the “Right to be forgotten" ?
One of the most important factors for Logicbroker customers is that as a third party organization connected to a client’s systems and brokering PII, Logicbroker needs to be able to “purge” an individual customer record and (all associated info) on demand. This action deletes all PII for the given customer and can be executed via the Logicbroker web portal once the applicable customer’s order transaction is in a completed status.
Please contact your dedicated Logicbroker representative for more information or refer to our Operational Controls. Logicbroker has partnered with Microsoft Azure for application hosting, and offers encrypted communications. Built-in SSL and TLS cryptography enables clients to encrypt communications within and between deployments, from Azure to client’s on-premise data centers, and from Azure to administrators and users. Transparent data encryption (TDE) helps protect the Azure SQL Database and Data Warehouse against the threat of malicious activity by performing real-time encryption and decryption of the database, associated backups, and transaction log files at rest.