WorkTime GDPR Compliance
GDPR compliance is about protecting personal data of EU citizens that is necessary and appropriate to collect.
WorkTime provides user activity details necessary to satisfy GDPR requirements. By logging user activity, WorkTime creates a detailed event log file satisfying the requirement of evidence of any supervisory authority.
This article enlightens the challenges of the safety and security of personal data for every company dealing with personal data from EU users, and how WorkTime meets GDPR compliance objectives.
The challenge of ensuring security of personal data.
The General Data Protection Regulation (GDPR) of the European Union took effect on May 25, 2018. This totally changed the way companies worldwide do business involving European Union citizens.
According to GDPR, personal data includes any information “that can be used to directly or indirectly identify the person. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, medical information, or a computer IP address.” The mentioned data must be stored properly and protected, regardless of where the data, or the company processing or controlling the data resides.
There are penalties for any data breach: 4% of a company’s annual worldwide revenue or €20 million (approximately $24.8 million), whichever is greater.
To avoid these penalties a company must be able to demonstrate:
- proper processing,
- security controls,
- zero breaches.
Also, after receiving a breach notiﬁcation, a company is required (within 72 hours) to provide an event log files with all details necessary to document the extent of a breach.
This way, any company should be able to provide the access to data about every action performed by a user with personal data involved:
- application used,
- webpage visited,
- ﬁle / document worked with etc.
With the access to this information any controller or processor will clearly understand if personal data has been accessed and used in the proper way.
How WorkTime Helps Address GDPR Challenge
WorkTime helps companies to satisfy the GDPR requirements related to proper collecting and storing the data monitored by WorkTime products. It does so by recording and providing access to detailed user activity data – both within applications used to process personal data, as well as in any other application.
All activity data is searchable, making it easy for the DPO, an auditor, or IT to ﬁnd any actions. Reports can be generated in seconds.
For more questions about WorkTime GDPR compliance, please contact us at firstname.lastname@example.org
or call 1-877-717-TIME.