Since May 25, 2018
The new European AVG/GDPR privacy legislation on data protection applies from now on. From now on, companies are obliged to inform everyone about the use of personal data and must secure it as well as possible, both online and offline.
For every entrepreneur
Every entrepreneur in Europe is obliged to have a privacy statement and, among other things, post it on their website. This includes, in understandable language, which personal data is stored, where and how, and how its safety is ensured as well as possible.
You can find out exactly what to do and what not to do at https://hulpbijprivacy.nl. Read this carefully, because the GDPR is much more than what we have described here.
AVG for websites
For every company that has a website that uses, transmits and/or stores personal data, 4 things must be done:
- To ensure safety, you must use a secure web server. This means a website with https://or the green lock in your browser address bar. To do this, you need an (appropriate) SSL certificate that must be created, verified and installed correctly.
- In your privacy statement it must be clearly described where the requested data goes, how it is secured, what is done with it and how long it is stored.
- All other components, whether or not linked to other systems, must also be secured. So this applies to any connection with which personal data is transmitted.
- In addition, it must also be clear which cookies are used. When using tracking or advertising cookies, you are even obliged to (actively) report this in advance and only load them after a website visitor has accepted them.
All email, which is transmitted via the web server, must use SSL/TLS. In addition, the final destination must also support this, otherwise you will send email in an unsafe manner.
Data processing agreement
You should also preferably describe the storage and use of personal data in, for example, accounting software, a CRM system or web application in your privacy statement. You must have one for each application/software package processing agreement close, which states exactly who is responsible for what.
Among other things, we provide:
- One SSL certificate
- Installing a (new) Privacy statement
- Anonymize Google Analytics in accordance with the GDPR
- Post a cookie notification if necessary
- Information provision when switching to TLS for email security
- A digitally signed processing agreement between you and iX Studios
The privacy statement must include at least:
- How and where is personal data sent and stored and how is it secured
- What exactly the personal data is used for
- What other processors and sub-processors, if any, are being collaborated with
- That everyone has the right to view, change or have personal data deleted
- How personal data is kept safe (every day)
iX Studios Privacy Statement
Every entrepreneur must have a privacy statement since May 25, 2018 and, as described above, meet the various criteria. We have also carefully mapped this out. Check out our privacy statement, which from now on can always be found via our website.
geschreven door
Martijn Hoppenbrouwer
Lorem ipsum by sit amet, adipissing elite consecteur. Suspendisse varius enim in eros elementum tristique. German course, mi quis viverra ornare, eros dolor interdum nulla, ut commodo diam libero vitae erat. Aenean faucibus nibb et justo cursus is rutrum lorem imperdiet. Nunc ut sem vitae risus tristique posière.
Block Quote