1. The General Data Protection Regulation provides for clearly defined and extensive changes to the Personal Data Rights. This applies to customers, employees, members and other individuals for which the company has any kind of personal data.
2. The transparency, minimisation, necessity and legal justification of data flows should be assessed prior to the processing of ikkatrasPersonas data.
3. Any person (data subject) has the right to request and to obtain all the information at the disposal of the company within 30 days.
4. Penalties for data breaches can amount to 4% of the company’s turnover or up to EUR 20 million
5. The General Data Protection Regulation and the Personal Data Protection Act was entered into force on 25 May 2018.
In Latvia, the processing of personal data by 25 May 2018 had taken place in accordance with the Privacy Data Protection Act, which introduced the requirements of the Directive. The Directive was adopted on 24 October 1995 and more than twenty years had passed at the time of adoption of the Regulation, which is a very long time comparing the pace of technological developments. During this period, digital technologies have developed significantly and have fully transformed the commercial environment. Rapid technological developments have brought new challenges to protect personal data.1
Currently, technologies allow the use, storage and processing of personal data for both credit institutions and private companies and public authorities, etc., in order to be able to fulfil their functions at unprecedented levels and speeds. In addition, consumer opinion studies have also revealed that consumers are concerned about the safety of their data and want more control over their data and about the use of their data.
The protection of personal data plays a central role in the European digital agenda and in the Europe 2020 strategy.² The regular use of digital technologies and electronic services results in the processing of huge amounts of data, resulting in decisions and the creation of profiles of individuals, which can have both positive and negative consequences for the data subjects concerned, and therefore the need for new personal data protection mechanisms has increased.
2 See also Regulation annotations 1.-2. lpp.
Gustava Zemgala 74, Teodors building, Teikums 2,
© 2018 Protectum | email@example.com | All Rights Reserved