More

    Scalefusion – Getting Ready for GDPR Compliance

    Share On

    What is GDPR? When is it coming into effect?

    The GDPR (General Data Protection Regulation) is an important regulation which is aimed to protect data privacy of all EU citizens and empower the users. It means that the user gets the complete control over their personal data i.e. the right to access as well as the right to forget i.e. withdrawing their data.

    The regulation will be effective on the 25th May 2018.

    It will replace the existing 95/46/EC Directive on Data Protection which was applicable since October 1995.

    Who does GDPR impact?

    GDPR is applicable to all companies, within the EU or outside the EU, irrespective of its location, that markets or does business with individuals or organizations in any of the EU countries.

    How is Scalefusion getting ready for GDPR compliance?

    Scalefusion is working committedly towards the GDPR compliance. We are taking various steps, as briefed below, across our entire organization to get ready.

    Awareness among employees – Every specialist, lead, manager, and executive are being educated on what is GDPR, the importance of its compliance and what steps and changes has to be taken to achieve that.

    Data assessment -We have assessed and documented what kind of personal data we collect.

    Changes in the internal process – We are continuously assessing what all changes are required in our internal processes to be compliant with GDPR and working towards implementing them.

    Cookie Policy – We will be enforcing the cookie policy which is in accordance with the GDPR.

    Terms & Conditions – At the time of signup as well as after, we will be mandating the consent to the Scalefusion’s Terms & Conditions, demonstrating compliance with the GDPR.

    Audit Logs – We will be maintaining the logs of all the Admin activity including the request for withdrawing the data i.e. Right to Forget. We will be maintaining the log for 18 months at least and the same will be assessed by the Data Protection Officer (DPO), whenever required.

    Right to Information – All the personal information collected about account admin and the device admins will be available to the account admin when requested.

    Right to Forget – In accordance with the GDPR, a user has all rights to withdraw all their data. To be compliant, we will be sending an Email asking their acceptance for the same and even fetch the confirmation on call within the window of 48-72 hours. Only after duly filled up acceptance email, we will be completely deleting the user data from our records.

    We are implementing the required changes, and the changes are being done, we will meticulously test them and confirm & authenticate its compliance with GDPR. After that, we will be announcing our complete compliance with GDPR before the mandated date.

    If you are still in the process of understanding the GDPR, visit our blog – GDPR & How SaaS companies can prepare for the regulation?

    Nema Buch
    Nema Buch
    Nema Buch is a Research & Marketing professional, also writes for Scalefusion on Enterprise Mobility trends, SaaS, and different Industry Verticals.

    Latest Articles

    What is OpenID Connect (OIDC) and how does it work

    Passwords are messy. VPNs break. SAML is a headache. Still, stuck with clunky login flows or apps that don’t talk to each other? It’s...

    Understanding DORA compliance: A complete guide

    When your systems rely on third parties, resilience is no longer optional. The Digital Operational Resilience Act(DORA) makes that law. If your teams cannot...

    Best Microsoft Exchange alternatives for 2025: Power-packed picks for businesses

    Let’s face it, Microsoft Exchange might be the gold standard for business email and collaboration. But times change, tech evolves, and what once felt...

    Latest From Author

    How to Block Websites on iPhone and iPad?

    For organizational productivity, IT admins must know how to block websites on iPhones or iPads to restrict corporate-owned devices with content privacy restrictions for...

    Lockdown Android Tablets for Business Purposes

    Handing out Android tablets to employees sounds efficient until those same devices start affecting productivity or leaking data. That is why businesses now lock...

    How to Lock Android Devices in Single App Mode?

    The ability to monitor and restrict mobile device usage within your company has become essential in today’s hectic work environment. One revolutionary option that emerged...

    More from the blog

    How to screen share on Mac from another Mac:...

    Screen sharing on a Mac is incredibly simple for personal use. Whether you're helping a friend troubleshoot or showing...

    What is a custom OS? MDM for custom Android...

    When businesses want their Android devices to perform in a very specific way, they often choose to install a...

    Introducing OIDC support in OneIdP: Extending secure SSO compatibility...

    As organizations adopt more SaaS platforms, IT teams face the challenge of maintaining secure, seamless access across a fragmented...