Articles / le GDPR

The GDPR, how to
benefit from it?

The General Data Protection Regulation (GDPR), which came into force on 25 May 2018, applies to any company collecting personal data from its users.

Replacing the prior declaration to the CNIL and the IT & Liberties laws, the GDPR invites companies to organise the protection of the personal data collected and the use made of it, for greater security, efficiency and trust on the part of users.

The life cycle
of the data
users

Benefits for
users and
for companies

How does the application
of the GDPR is an opportunity?

With the explosion of digital media and other social networks, companies are nowadays collecting a large amount of personal data.

However, regulation has not kept pace with information and communication technologies: The GDPR aims to ensure that the privacy of users using these technologies is respected and protected.

For users the GDPR allows:

To have more visibility and control over their personal data.
To be more confident with digital actors.

For companies, the GDPR allows:

A better organization of data,
A mastery of the life cycle and storage of personal data and to be able to transmit them at the request of the user concerned.
A guarantee of seriousness, trust and responsibility.

Who is the GDPR for?

The GDPR concerns any entity, public or private (companies, associations and public bodies), which manages and/or stores personal data on European territory or targeting European residents.

If the company does not comply with the GDPR, what happens?

To motivate companies to comply with the GDPR, the European Community has provided two types of sanctions:
A minimum of €20 million or 4% of its worldwide turnover.

What data is covered by the GDPR?

The GDPR covers all personal data of a user. That is to say:

All data identifying a natural person: surname, first name, age, address, etc.
Any other personal data: license plate number, IP address, bank account number, fingerprints, etc.
All information resulting from a cross-referencing of data: the date of birth of a person living in a small commune allowing his or her identification.

The 4 main steps
for the application of the GDPR

The application of the GDPR can be complex if the data collection tools are not mastered, too numerous or too old.

Understand
the fundamentals
- - Which data are concerned?
- - What obligations for my company?
- - How can these obligations be met?
- - Sanctions in the event of non-compliance?
Audit
the existing one
- - Audit of the collected data
- - Content audit (confidentiality and security)
Establish
new tools
- - Appoint a DPO (Data Protection Officer)
- - Motivate the objectives of data collection
- - Define who will have access to the data and how
- - Define the rules for the "lifetime" of the data
- - Create a registry for data collection
Ensure that
compliance
- Establish the methods necessary to comply with the rules set out
- Ensure the monitoring and control of these rules

Need help?

Apotamox offers proven solutions, implemented for large international groups. User data is centralized in a single standardized database.

All our tools (Front-Office, Back-office, CRM, loyalty card, emailing, dashboard...) revolve around this database for an efficient exploitation, without risk of data dispersion or duplication to related systems.

The extraction of data for analysis is strictly subjected to user rights, and may be anonymized to respect confidentiality.

We also offer the portability and availability services defined by the GDPR.

Particularly aware of the GDPR constraints, our teams will be able to guide you to promote compliance with these rules and take advantage of them by reassuring your users.

A project, a question, an advice?

Ask us, it will be a pleasure to talk about it.

Address

70, rue des Marais
72000 Le Mans
France

02 43 14 10 10

By submitting this form, I agree that APOTAMOX may collect the personal data transmitted.
The information provided on this form is mandatory.The data collected are processed by computer to enable APOTAMOX - 70 Rue des Marais - 02.43.14.10.10 - contact@apotamox.com to contact you and respond to your requests. APOTAMOX may also use the data transmitted to provide you with personalised commercial offers.
The recipient(s) of this data is APOTAMOX.
The Data Protection Officer is Maître Gaëlle Leroy, Lawyer at the Le Mans Bar, located at 2 rue des gladiateurs, 72000, Le Mans - telephone: 01 83 75 75 80 80 - e-mail: contact@lext.fr.
The data storage period is 3 years (from the last contact made by the prospect, in accordance with the recommendations of the CNIL).You have the right to ask the controller for access, rectification, erasure or portability of your personal data. You may also request a limitation of the processing or you object to the processing of your personal data. Finally, you have the right to withdraw your consent to the processing of your data at any time. You can exercise your rights via this Form or by contacting contact@apotamox.com.
You have the possibility to file a complaint with a supervisory authority.

The life cycleof the datausers

How does the applicationof the GDPR is an opportunity?