jrobinson2006 Posted May 23, 2018 Report Posted May 23, 2018 How are people here tackling GDPR within PHPVMS? Quote
Administrators Nabeel Posted May 24, 2018 Administrators Report Posted May 24, 2018 23 hours ago, jrobinson2006 said: How are people here tackling GDPR within PHPVMS? From what I understand, it's just don't sell your user's data. Just make sure your terms and conditions and privacy policy are clear and up to date. This is a good guide: https://opensource.com/article/18/4/gdpr-impact https://termsfeed.com/blog/gdpr-privacy-policy https://termsfeed.com/blog/gdpr-compliance-plan Since it's just a name and email, and no other personal data, there's limited exposure. However, I'm not a lawyer and haven't run anything by a lawyer, so if you're concerned, I'd probably find an attorney to talk to. I'm looking at impact as well for the newer version of phpVMS. Termsfeed has a privacy policy generator: https://termsfeed.com/wizard/privacy-policy You probably should update your terms of service as well. Quote
aarbee Posted June 19, 2018 Report Posted June 19, 2018 Isn't GDPR for companies/enterprises? And eventually a club, for which you pay contribution? I consider a va as something personally. And I wonder if I as a privat person are being directed by the GDPR/AVG. Greetings, RobB Quote
Moderators shakamonkey88 Posted June 19, 2018 Moderators Report Posted June 19, 2018 No, it applies to ANY organisation that stores, deals with, or somehow processes/has possession of other people’s personal data that reside in the EU. It doesn't matter how big you are or whether you provide a paid service. If you store personal data of others, you need to be GDPR compliant. My VA is now GDPR compliant and have sent out a GDPR notice to all our pilots and I suggest that everyone should at least send something out. It’s better to be safe than sorry. 1 Quote
Administrators Nabeel Posted June 19, 2018 Administrators Report Posted June 19, 2018 6 hours ago, shakamonkey88 said: No, it applies to ANY organisation that stores, deals with, or somehow processes/has possession of other people’s personal data that reside in the EU. It doesn't matter how big you are or whether you provide a paid service. If you store personal data of others, you need to be GDPR compliant. My VA is now GDPR compliant and have sent out a GDPR notice to all our pilots and I suggest that everyone should at least send something out. It’s better to be safe than sorry. And even if you're an American organization, if you have anyone who is signed up who lives in Europe, it applies to you as well Quote
Moderators shakamonkey88 Posted June 20, 2018 Moderators Report Posted June 20, 2018 5 hours ago, Nabeel said: And even if you're an American organization, if you have anyone who is signed up who lives in Europe, it applies to you as well Exactly. That’s what I meant by stating that it applies to ANY organisation with personal data of people that reside in the EU. Basically, it applies to 99.999% of people! Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.