The European Union has taken a monumental step in protecting the fundamental right to privacy for every EU resident with the General Data Protection Regulation (GDPR), which will be effective from May 25, 2018. Simply put, EU residents will now have greater say over what, how, why, where, and when their personal data is used, processed, or disposed. This rule clarifies how the EU personal data laws apply even beyond the borders of the EU. Any organization that works with EU residents' personal data in any manner, irrespective of location, has obligations to protect the data. More details on the GDPR can be found on the Information Commissioners Office (ICO) Website.
At The House Crowd, we have always honoured our users' right to data privacy and protection. We have never relied on advertising as a revenue stream and have no necessity to collect and process users' personal information beyond what is required for the functioning of our services. Over the years, we have demonstrated our commitment to data privacy and security by implementing security certifications such as Cyber Essentials. We already have strong Data Processing Agreements and Privacy Policies, which we are reviewing to ensure they meet the requirements of the GDPR. We recognise that the GDPR will help us move towards the highest standards of operations in protecting customer data.
As a data controller, The House Crowd understands its obligation to be compliant with GDPR. We are in the process of identifying our GDPR requirements and have contracted the services of a specialist Cyber Security and Privacy Company to support THC in driving our organisation to meet them. Some of our ongoing initiatives are:
Providing Visibility and Transparency- The most important aspect of GDPR is how the collected data is used. As a data controller, The House Crowd's key role is to ensure that we only collect the data that is necessary to provide our service, and that we effectively manage and protect that data whilst it is being stored and processed by THC.
Identifying and Reviewing Personal Data- We are reviewing all of the data that we hold and process to ensure that we meet the requirements of GDPR and have the appropriate level of safeguards in place.
Enhancing Data Integrity and Security- Data privacy and data security are two sides of the same coin. THC recognise this fact and as part of becoming ready for GDPR we are reviewing the security posture of our Web Applications and Networks to ensure that we have the correct level of security measures in place to protect the customer data that we hold. Enhanced user rights - The GDPR provides the following rights for individuals:
If you have any questions relating to THC GDPR compliance please email [email protected] .