WorkTime – employee monitoring software
The only non-invasive employee monitoring
GDPR compliance is about reforming personal data in the EU and even across the world
The purpose of GDPR compliance is to ensure consistent security and protection of personal data.
It aims to prevent data breaches and leaks.
WorkTime provides user activity details necessary to satisfy GDPR requirements.
WorkTime provides user activity details necessary to satisfy GDPR requirements. By logging user activity, WorkTime creates a detailed event log file satisfying the requirement of evidence of any supervisory authority.
This article enlightens on the challenges of the safety and security of personal data for every company dealing with personal data from EU users, and how WorkTime meets GDPR compliance objectives.
The challenge of ensuring the security of personal data
The General Data Protection Regulation (GDPR) of the European Union took effect on May 25, 2018. This changed the way companies worldwide do business involving European Union citizens.
According to GDPR, personal data includes any information “that can be used directly or indirectly to identify a person. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.” The mentioned data must be stored properly and protected, regardless of where the data or the company processing or controlling the data resides.
WorkTime properly records, organizes, stores, and protects personal data regardless of the location of the company processing or controlling the data.
As more data is collected and maintained, companies have to be responsible and accountable for that data. There are penalties for any data breach: 4% of a company’s annual worldwide revenue or €20 million (approximately $24.8 million), whichever is greater.
To avoid these penalties a company must be able to demonstrate:
- Proper processing
- Security controls
- Zero breaches
WorkTime ensures zero data breaches by providing security control for anyone handling personal data.
Also, after receiving a breach notiﬁcation, a company is required (within 72 hours) to provide event log files with all details necessary to document the extent of a breach.
This way, any company should be able to provide access to data about every action performed by a user with personal data involved:
- Application used
- Webpage visited
- File / document worked with etc.
With the access to this information, any controller or processor will clearly understand if personal data has been accessed and used in the proper way.
How WorkTime helps address GDPR challenge
“With the help of WorkTime products, companies can comply with the GDPR requirements concerning collecting and storing data properly. WorkTime records and provides access to detailed user activity data – both within applications used to process personal data, as well as in any other application.
All activity data is searchable, making it easy for the DPO, an auditor, or IT to ﬁnd any actions. Reports can be generated in seconds.
This article provides general information only. This information is for general understanding only and not to be used as legal advice. To receive professional legal advice, please consult your lawyer.