On May 25, 2018, the European Union (EU) will begin to enforce a new data protection regulation called the General Data Protection Regulation (GDPR). The GDPR is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organizations across the region approach data privacy.
Connect First is fully committed to achieving compliance with the GDPR by the May 25, 2018 enforcement date. This site overviews the steps we are taking and helps address questions you might have about GDPR and Connect First.
FAQs for Connect First Users
What is GDPR?
On May 25, 2018, the European Union (EU) will begin to enforce a new data protection regulation, the General Data Protection Regulation or Regulation (GDPR). The GDPR is designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens’ data privacy and to reshape the way organizations across the region approach data privacy.
Who does the GDPR impact?
The GDPR applies to organizations located within the EU in addition to organizations located outside of the EU if they offer goods or services to, or monitor the behavior of, EU natural persons or ‘data subjects.’ It applies to all companies processing and holding the personal data of data subjects residing in the EU, regardless of the company’s location.
What steps is Connect First taking to comply with GDPR?
We are actively working to address GDPR compliance for all our EU resident users. As we approach the May 25, 2018 enforcement date, Connect First is:
Mapping an overview of all our systems to document the use of personal data.
Reviewing and revising our vendor agreements and implementing new processes to address the GDPR sub-processor requirements.
Identifying technical changes to our platform that will enable us to support the GDPR's requirements and enhanced data subject rights.
How will Connect First demonstrate compliance with GDPR?
We are fully committed to achieving compliance with the GDPR by the May 25, 2018 enforcement date. Connect First is conducting internal assessments and evaluating our readiness to execute on our obligations under the GDPR.
What constitutes personal data as part of GDPR?
Any information related to a data subject that can be used to directly or indirectly identify the person, according to the GDPR. It can be anything from a name, a photo, an email address, bank details, posts on social networking websites, or medical information.
What personal data does Connect First collect from its users?
When you fill out registration forms, request a demo form, asset downloads, submit your resume, fill out an application on Connect First, or proactively provide us with other personal information, we collect that information.
In addition, your device is automatically providing information to us so we can respond and customize our response to you. This generally includes technical information about your computer, such as your IP address or other device identifier, the type of device you use, and operating system version. It may also include usage information and information associated with your interaction with Connect First.
What does Connect First do to keep its users' personal information safe?
We are regularly enhancing and evolving our security platforms, procedures and methods to better protect our users' information and anonymity.
Who should I contact if I have further questions about GDPR compliance and my relationship with Connect First?
For more information about Connect First and GDPR, please contact us at firstname.lastname@example.org. Further information on GDPR specifically can be found at eugdpr.org.