GDPR and new privacy policy

27May

GDPR and new privacy policy

By News , 0 Comments

RegisterONE is Now Globally GDPR Compliant! Wait! What Does That Mean?

As RegisterONE continues to grow and evolve as a service, our clientele base does too. In order to expand into these markets of growth, we have updated our Privacy Policy, Cookie Policy and our Terms and Conditions as well. The changes we have made are to focus on receiving and obtaining EXPRESS CONSENT before gathering any personally identifiable information onto the Platform, and to implement data protection measures to safeguard the security of the data placed on the Platform.

In the United States, there are two important laws that we follow, namely the Privacy Shield Framework (which is transatlantic commerce from/to the European Union and Switzerland and United States) https://www.privacyshield.gov/welcome and the California Consumer Privacy Act for consumer protections of privacy https://leginfo.legislature.ca.gov/faces/billTextClient.

These laws focus on an individual companies responsibility to protect the transfer of personal information and data from consumers to any entity sharing their personal information, inhibiting the collection of personal information of minor children who are unable to give consent and to establish an enforcement agency to enforce the laws when the are not being followed by said companies. In other words, we only collect information we need for the purposes of processing specific requests and eliminate the data when it is not longer required or the consumer asks for us to amend/delete the information. Period.

About the Entities of GDPR

The European Union has also issued the General Data Protection Regulation (GDPR) https://gdpr-info.eu/. This nifty little piece of legislature identifies three key parties (if applicable). They are:

  1. Data Subject = the person or company submitting personal infomation on a form
  2. Controller = the entity who uses the personal information to provide a product or service
  3. Processor = the entity that provides the means of capturing and storing personal data

Each has a distinct part to play, and a different set of rules and regulations to follow.

In a nutshell, the data subject (Client Business Contact or the Exhibitors, Attendees, etc.) has a right to know why they must provide the information requested (purpose and transparency), the safeguards in place and what information has been collected (right of access), and what they can do if they wish to rescind access to their information (rectification and right to be forgotten, with caveats). They also have the right to know why their rights may be restricted in any way (national security, defense, public security, etc.).

GDPR: Controller vs. Processor

The “Controller” or Primary Client (ie. expo, trade-show, conference organizer) decides what personal information and data they gather from individuals and for what purpose. They are also solely responsible for how the information is used within their organization. All roads lead to Rome, so if a Client Business Contact wishes to amend or rescind information they have expressly given, they must first contact the Primary Client to initiate the process. Then RegisterONE is notified to restrict personal data to this Primary Client from this Client Business Contact.

RegisterONE is the “Processor” and acts as the bridge, or go between for the Primary Client (Organizer), the Primary Client Contact (Exhibitors, Attendees, etc.) and any other entities they do business with and connect through by utilizing the RegisterONE Platform. We serve to process the personal information or data on behalf of the Primary Client, but we do not use the personal data or information we gather, except where applicable by law.

Are there other countries or regions with their own versions of a data protection law? Yes, most certainly, and if it is necessary to amend our Privacy Policy to address specific laws in specific countries or regions that are not represented here, we will do it by a case by case basis. No sense in putting the cart before the horse, after all.

Share this post

Author

Leave a Reply

Related Posts

06Dec

Dec 2018 Updates & WP v5.0 note

We've been working closely with all of you to develop the most... read more

12Jan

WP Plugin v1.1.9.3 – Better Form Navigation, Amenity Control and Badging

WP Plugin v1.1.9.3 adds better form navigation, amenity display control and badging... read more

14Sep

WP Plugin v1.1.2 – Amenity discounts and Badging support

The Communicator module now supports sending an invite to your previous vendors... read more

27Dec

WP Plugin v1.1.3 – Badging & Nametag Amenity

When your applicants fill out an application, they can also select how... read more

29Oct

Vandenberg Media Inc. Acquires registerone.com domain

When RegisterONE first launched, it was served under registerone.US because it was... read more

27Dec

WP Plugin v1.1.5 – Promo Upsell/Advertising Amenity type

There's a better way to add promotional upsells on your exhibitor application... read more

25Aug

Development update – Aug. 2017

The reason I started developing RegisterONE is that, from a vendor's perspective,... read more

27Dec

WP Plugin v1.1.6 – WP v5 compatibility

The RegisterONE plugin has been tested with WP5.0 and it's 100% compatible. read more

27Dec

WP Plugin v1.1.4 – Attendee/Volunteer Registration Module

RegisterONE offers different modules to track different type of applicants. The new... read more

23Feb

WP Plugin v1.1.10.2 – Mini-CRM, Invoices, Item/Price, Phone # masks, UX changes

WP Plugin v1.1.10.2 adds a few new features to R1, as well... read more