How is the DPDP Act similar and different from that of GDPR?
Automate
GDPR Compliance
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information from individuals who live and outside of the European Union (EU).
Operationalize GDPR requirements
Text
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Text
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Text
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua.
Operationalize GDPR requirements
Who does the GDPR apply to?
Data subject under the GDPR. There are two different types of data-handlers the legislation applies to: ‘processors’ and ‘controllers’.
Personal data
Personal data to include all information that could be used to indirectly identify individuals
Data Protection Impact Assessment (DPIA).
A process designed to identify risks arising out of the processing of personal data and to minimise these risks as far and as early as possible
Business Purpose & Lawfulness
Data processing must be legal, and the information collected used fairly.
Data Subject Rights
GDPR has empowered users by giving them an array of new rights regarding their personal data.
Breach Notification
In case of any compromise of user data, the organization is obliged to report data breaches to the ones affected as well as the relevant regulatory body so everything possible can be done to restrict the damage.