GDPR affects every company and sets out several obligations for various parties such as brands, “data controllers,” technology providers or “data processors”. As İletişim Makinesi we are implementing our obligations as a data processor. Since the day we founded, we are putting great effort to security and privacy controls and will definitely continue to make product and service enhancements in line with GDPR as a major player in the marketing technologies landscape.2. What is GDPR?
The General Data Protection Regulation (“GDPR”) is a new comprehensive data protection law in the European Union (“EU”) that updates existing laws to strengthen the protection of personal data in light of rapid technological developments, increased globalization, and more complex international flows of personal data. It replaces the patchwork of national data protection laws currently in place with a single set of rules, directly enforceable in each EU member state. The GDPR goes into effect on May 25, 2018.3. What does GDPR regulate?
GDPR regulates the “processing” of data for EU individuals, which includes collection, storage, transfer, or use. Any organization that processes personal data of EU individuals is within the scope of the law, regardless of whether the organization has a physical presence in the EU or not.4. Does the GDPR forbid the transfer of EU personal data outside the EU?
No, the GDPR does not forbid the transfer of EU personal data out of EU or place any new restrictions on that matter. İletişim Makinesi’s data protection addendum, which references the European Commission’s model clauses (a.k.a. standard contractual clauses), will continue to enable our clients legally transfer personal data out of EU.