GDPR, hIPPA AND popia.
General Data Protection Regulation (GDPR)
We connect people across organizations, around the World and to every application in the Cloud, therefore security and compliance is of utmost importance to our clients.
CloudINX regards GDPR and POPIA with great importance. These regulations, which came into effect on May 25, 2018, safeguard individuals' right to personal data and their privacy. As a service provider with a wide global coverage, we have implemented stringent GDPR-compliant security policies. Our security measures adhere to the guidelines of these regulations as well as internationally recognized security procedures and standards.
Most security standards and frameworks focus on people, processes, and technology, and we ensure that these requirements are met. We also have precise controls in place for our partner network and data center providers, which include measures for the physical security of assets used for storing or accessing information..
.Who does the GDPR affect?
The General Data Protection Regulation (GDPR) not only applies to organizations located within the EU but it will also apply to organizations located outside of the EU if they offer goods or services to, or monitor the behaviour of, EU data subjects
. What are the penalties for non-compliance?
Organizations can be fined up to 4% of annual global turnover for breaching GDPR or €20 Million, whichever is higher. This is the highest penalty that may be given for the most egregious violations. It is important to note that these rules apply to both controllers and processors -- meaning the GDPR subjects data processors to direct liability in certain circumstances, for example in relation to a data security breach and joint liability to data subjects where the data controller is at fault.
. What constitutes personal data?
Any information related to a person, that can be used to directly or indirectly identify that person. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.
. How does CloudINX comply with GDPR??
Our clients prefer to collaborate with us since our strong data privacy framework is a critical pillar of our company's success. It assures compliance with current privacy and data protection legislation and fosters a culture of optimal data handling practices. As a telecommunications service provider, we respect the ePrivacy Directive (Directive on privacy and electronic communications) as well as rigorous country-specific telecommunication regulations, which may overrule GDPR in some cases.
CloudINX secures the data that we handle on behalf of our clients using what we consider to be cutting-edge technology. We are strengthening our data security by creating more specific policies, procedures, and processes that are certified as complying with the most stringent industry approved data security standards.
.How does CloudINX carry out key technical aspects of GDPR, such as ‘privacy by design’ or data privacy impact assessments (DPIA)??
CloudINX conducts data privacy impact evaluations on all elements of the company, both internally and for customer-facing solutions. CloudINX implements privacy by design through governance mechanisms such as architecture boards, as well as as a critical milestone at the start of every project..
.Can my solution or service from CloudINX be tailored for my organization’s GDPR compliance needs?
Absolutely, CloudINX can customize any customised service to our clients' needs and GDPR compliance. We have a number of cyber security products that can assist our customers in achieving a high degree of cyber security maturity and, as a result, GDPR compliance.
. How can I request personal data protection support from CloudINX?
CloudINX can tailor any customized service to our clients' demands and GDPR compliance. We provide a variety of cyber security tools to help our customers achieve high levels of cyber security maturity and, as a consequence, GDPR compliance..
.How does CloudINX comply with GDPR?
Our clients prefer to collaborate with us since our strong data privacy framework is a critical pillar of our company's success. It assures compliance with current privacy and data protection legislation and fosters a culture of optimal data handling practices. As a telecommunications service provider, we respect the ePrivacy Directive (Directive on privacy and electronic communications) as well as rigorous country-specific telecommunication regulations, which may overrule GDPR in some cases. CloudINX secures the data that we handle on behalf of our clients using what we consider to be cutting-edge technology. We are strengthening our data security by creating more specific policies, procedures, and processes that are certified as complying with the most stringent industry approved data security standards.
Contact us e-mail: global.data.protection@cloudinx.com