The General Data Protection Regulation (GDPR) is an EU legislation that is designed to protect the fundamental rights of citizens and their personal data. This law ensures that people not only know where their private data is kept but it holds organizations accountable and transparent with their practices. EUGDPR.org lists the key changes.
GDPR was officially enacted on May 25, 2018, in Europe, and it will have a significant impact on organizations around the globe. This means you. This new regulation shifts how organizations store data and relate to data in general.
The fine for non-compliance to the GDPR can be up to 20 million euros or 4% of your gross revenue (whichever of both is highest).
SmartSimple has taken all necessary steps to become GDPR compliant by implementing and strengthening the appropriate technical and organizational measures.
We acknowledge that our partners and clients require sufficient guarantees that we will be GDPR compliant, which is why we are pursuing certification from the EU Cloud Code of Conduct. According to the legislation, following a Code of Conduct is a concrete way to demonstrate and certify compliance.
As an integral part of our business ethics and DNA, we take data protection very seriously; which is why we hold our standards to the highest degree of accountability, and we apply this care into each of our systems and client-facing platforms. We acknowledge that our partners and clients require sufficient guarantees that we will be GDPR compliant, which is why we are pursuing certification from the EU Cloud Code of Conduct. According to the legislation, following a Code of Conduct is a concrete way to demonstrate and certify compliance. It is highly recommended for organizations to follow one.
SmartSimple adheres to international industry leading compliance and audit standards for your peace of mind. Learn more about our commitment to security here.
The SmartSimple platform is powered by AWS’s Amazon Elastic Compute Cloud, which is certified by the Cloud Infrastructure Code of Conduct, CISPE. Learn more about AWS’s GDPR-readiness.
We know that when you started your career in philanthropy, privacy law was probably not at the top of your mind. However, since privacy law has an effect on nearly every department of every global organization, chances are you will be affected.
SmartSimple's aim is to help you bridge the gap between the legal and technical requirements of privacy law, allowing. We want to ensure that no matter how big, or small your team is, that you'll be able to effectively manage your privacy law compliance.
Under Article 28 of the GDPR, our commitment as a ‘Data Processor’ (see definition) is to assist ‘Data Controllers’ (see definition) in ensuring compliance to the new legislation as well as demonstrating compliance in all aspects of our processes.
We are open and available to answer any of your GDPR-related questions. Please reach out, we’re here to support you. firstname.lastname@example.org