The General Data Protection Regulation, or GDPR, is a regulation in EU law passed in 2018 protecting the data and privacy for all citizens of the European Union (EU) and European Economic Area (EEA).
GDPR’s aim is to give you control over your personal data and set a regulatory framework for enterprises holding this data.
GDPR protects your data and contains provisions and requirements for controllers of personal data who must have the appropriate technical and organizational measures in place to implement the data protection principles.
How does GDPR protect my data?
- Your data will not be made public without your explicit, informed consent.
- It cannot be used to identify you without additional information stored separately.
- Unless required by law for the activity on our platform, you have the right to revoke consent to the use of your data at any time.
- You have the right to view your personal data and access an overview of how it is being processed.
- You have the right to obtain a portable copy of your stored data and the right to contest any automated decision-making that was made solely on an algorithmic basis.
- You have the right to file complaints with a Data Protection Authority.
A data processor must clearly disclose all data collection, declare the lawful basis and purpose for data processing, and state how long data is being retained and if it is being shared with any third parties or outside the EEA. Blockchain must ensure that data collected is necessary for each specific purpose on the platform.
Does this apply to data beyond EU and EEA?
The regulation covers users in the EU and EEA but also addresses the export of data outside these areas. It further applies to any enterprise that is processing personal information of data subjects inside the EEA, regardless of its location.
To read the complete EU Regulation 2016/679 on GDPR to fully understand its scope and the protection of your data - click here