Data protection: what's changing for companies from May 25, 2018
MIL OSI Translation. Government of the Republic of France statements from English to French – Credits: © CNIL
The European Data Protection Regulation (GDPR) comes into force on 25 May 2018 in all European Union countries
In order to secure the personal data of their customers, companies (controllers and their subcontractors) will have to follow a new regulation.
The RGPD applies to all processing of personal data, with some exceptions.
From now on, the preliminary formalities with the CNIL are suppressed (except risks for the people) and new rights appear (right to the oblivion, right to the portability of the data).
Moreover, the consent of minors is framed. Before the age of 16, parents must authorize the processing of their children's data (on social networks, for example). States can, however, lower this threshold to 13 years. France has set it at 15 years.
The regulation allows the introduction of new sanctions in case of non-compliance with the rules (up to 20 million euros fine).
EDITOR'S NOTE: This article is a translation. Please forgive us should the grammar and / or sentence structure not be perfect.