GDPR is a commonly used shorthand to identify the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
You can find the complete regulation here.
How we approach GDPR compliance is a prime example of what we mean when we say Connhex is an IoT suite, not a platform.
We offer a comprehensive solution for device manufacturers: legal aspects are just as important as technical ones if your goal is to provide a service to your users. GDPR compliance is one of those things that comes easy if one keeps it as a constraint during the initial design phase: otherwise there could be fatal flaws impossible to patch.
And if you're not convinced on the importance of protecting personal data just from a moral standpoint, sanctions can be quite heavy (see below).
No, you're not - and incidentally you won't be by choosing any IoT solution.
You should have a 360-degree view when reasoning about GDPR. For example, no one but your company can:
To the best of our knowledge: no, there isn't - nor it can exist at all.
If you have a role in deciding what data is collected, you are the data controller: there's no way any supplier can guarantee your compliance to GDPR - no matter what their sales representatives say 😉
In GDPR terminology, Compiuta is a data processor. This means Compiuta (or any other data processor) must:
For the complete list of obligations, see Article 28.
The GDPR includes consultation between the actions performed on personal data that classify as processing - see Article 4.
Since we need to maintain, update and support Connhex instances, we need to have access to database clusters.
We don't take this responsibility lightly: Connhex databases containing personal data are accessible only to a limited number of people inside Compiuta and we keep a log of any action performed when accessing them.
There are two ways Connhex helps you with compliance:
See Article 83: up to 20.000.000 € or 4% of total worldwide annual turnover of the preceding financial year, whichever is higher.
Definitely: we have a clear understanding of what personal data means and have lots of resources you can access. Just contact us!