UtopiaR is an effective GDPR Data Protection Impact Assessment solution helping media organisations become and stay GDPR compliant. We’re helping our media customers become trusted resources for the general public!
UtopiaR is the Data Protection Impact Assessment (DPIA) solution that is being implemented by organisations in many industries. The General Data Protection Regulation (GDPR) was formed by the European Commission to strengthen and unify data protection for those individuals in the EU. This essentially means any organisation which deals with the private information of an EU citizen will need to comply by GDPR.
A substantial industry which will need to follow the new data protection regulation is the media sector. Media companies normally identify as groups who produce, publish and distribute media texts. This generally includes newspapers, magazines, films, television, advertisers, radio, web companies, app businesses, game organisations and more.
UtopiaR will help you adjust to the privacy impact on the media industry!
UtopiaR’s Key Data Protection Impact Assessment Features
An effective and intuitive assessment tool.
Simple creation and management of comprehensive Privacy Impact Assessments and Data Protection Impact Assessments (Art.35).
Help your business meet the GDPR’s requirements for Privacy by Design and Default (Art.25).
A easily accessible cloud-based solution, suitable for users of all levels of experience.
The EU General Data Protection Regulation (GDPR) became active on the 25th May 2018. GDPR will be in control of the management and processing of all personal data throughout the countries of the European Union. EU citizens now have new rights to their data!
One of the biggest changes is that GDPR no longer requires data controllers to register with their local Data Protection Authority. It will be down to the organisation and their Data Protection Officer to maintain comprehensive records of data processing activities (Art.30). This should then demonstrate how the media organisation provides effective protection for personal data.
Every EU citizen will now have a right to; be informed, access, rectification, erasure, restrict processing, data portability and object. You as a business must show that you have responded to a citizen within 1 month of receiving their enquiry and are working to fulfil their request.
Our UtopiaR solution extends beyond traditional thinking to offer insights into your compliance and report on any issues detected. It will provide observations which require remediation. UtopiaR is truly protecting our customers are yours!
UtopiaR allows for the creation and management of Privacy Impact Assessments by providing a record of:
Your data processing activity and how personal data is being actioned.
The categories of personal data that are being processed.
Which personnel and/or IT systems have access to personal data.
Where the personal data is to be processed or stored.
Information on the third parties who may be involved in its processing.
Whether appropriate data protection training and awareness has been conducted.
Detailed data flows of how the personal data moves through the various stages of the activity.
The assessment against data protection legislation, for example, whether data subject consent has been obtained and how data breaches are to be identified and reported.
Article 25 of the EU GDPR requires that “data protection by design and default” is delivered when processing any personal data. This approach is not new and is best evidenced by the completion of a Data Protection Impact Assessment.
The conducting of effective Privacy Impact Assessments are at the heart of “Privacy by Design and Default”. This requires a number of distinct roles. All of these actions are addressed by the UtopiaR solution:
To understand and implement effect privacy controls into all data processing activities.
To identify and escalate data protection and privacy issues that may be identified during the course of an assessment.
To reduce the exposure, associated costs and legislative penalties from data protection and privacy risks that otherwise may not have been discovered.
To produce comprehensive Data Protection Impact Assessments which can be provided to the Supervisory Authority upon request (e.g. in the event of an investigation).
To provide an option for sharing transparency of how personal data is being processed with data subjects, to build confidence and trust.
To support existing information security best practice for those who undertake risk management activities, for example as part of their ISO27001 information security certification.