Unified Metrics Library - GDPR compliance

Helper question

Did the company have platforms for GDPR compliant and have nominated a DPO (Data Protection Officer), during the period?

Summary

The indicator aims to ensure if the organization is committed to privacy and regulatory compliance in data processing.

Unit

Boolean: Yes or No

Description

Data processing involves handling personal information, and GDPR sets rules for the lawful and secure processing of such data. A crucial aspect of GDPR compliance is appointing a DPO who is a designated person to ensure adherence to regulations and safeguarding individuals’ privacy in the processing of their data.

See here for more details about the European data protection for the digital era .

Regulatory Definition

The EU general data protection regulation (GDPR) governs how the personal data of individuals in the EU may be processed and transferred.

Sources

European Council, Data Protection in the EU, The general data protection regulation

Examples

According to GDPR, businesses are responsible for the data they collect. For this reason, GDPR compliance requires an integrated data management system approach which involves ensuring explicit consent for data processing, implementing strong security measures and providing data subjects with rights to access and control their information.

Data security measures

Sustainable Supply Chain