GDPR Compliance
The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area. GDPR enhances transparency and gives individuals enforceable rights, such as the right of access, rectification, erasure, the right to object and the right to data portability.
Automate your GDPR data protections requirements to ensure compliance.
Book an Intro CallHow Classify360 Ensures GDPR Compliance
Discover Personal Information Covered by GDPR
Respond to “right to be forgotten” requests by easily discovering and accessing individual personal data such as name, age, credit card number, postal address, IP address, social security number, driver’s license number, passport number, and more residing within your organization’s data.
Preserve Business-Critical Analytics
Take action to redact personal information while maintaining the key components of the document for analytical purposes, or defensibly delete documents all together – while clearly demonstrating timely compliance.
Efficient GDPR Request Fulfillment
Respond to GDPR requests quickly and accurately through the CDMHub interface. Avoid costly fees and penalties for insufficient or late responses.
CDMHub: A User-Driven Portal
Allow internal data stewards to manage and take control of PII through the CDMHub. Automatically generate audit trails for defensible deletion & GDPR policy enforcement.
Audit Your Data
Identify where GDPR-relevant data resides within your data stores.
Assess Data Risks & Processes
Classify360’s machine-learning powered information engine gathers all GDPR-relevant data, grouping it according to refined data models. Data is segmented into internal, public, proprietary, and confidential buckets to inform decision making.
Manage Data Processing Agreements
Classify360 automatically maintains a thorough, digital chain of custody for all data processed within the platform. Eliminate human error and confidently comply with data processing agreements.
Execute on Your Data Protection Program
Elect to redact personal information from your files or defensibly delete items at the source to fully comply with a request to be forgotten per GDPR regulations.
Are You Ready to Automate GDPR Compliance?
Frequently Asked Questions
The General Data Protection Regulation is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area.
The goal of GDPR is more power and control to people regarding how organizations use their personal data. To be compliant you must have:
- Privacy principles
- Data subject rights
- Lawful basis of processing
- The concept of privacy and protection by design and default
- Specific breach notification requirements
- Information security requirements
The GDPR reaches into US-based companies because the GDPR is designed to protect the “personal data” of individuals. The GDPR says it applies to the processing of “personal data of data subjects” controllers and processors who are in the EU, but also to “processing activities” related to: (1) offering goods or services; or (2) monitoring data subject behavior that takes places in the EU.
The GDPR replaces the 1995 EU Data Protection Directive which generally did not regulate businesses based outside the EU. However, now even if a US-based business has no employees or offices within the boundaries of the EU, the GDPR may still apply.