The new Regulation (EU) 2016/679 concerns the protection of the individuals regarding the processing of their personal data and the free movement of such data.
The main purpose of the Regulation is to adapt and update the principles and objectives previously set in line with technological developments. To that end, the regulation establishes a single set of rules, directly applicable in all Member States of the Union, in order to more effectively protect the privacy of natural persons within the European Union.
The regulation was adopted by the European Parliament on 27th April 2016 and its provisions will apply from 25 May 2018; the Regulation replaces the Directive 95/46/EC and, implicitly, the provisions of Law no. 677/2001.
Among the elements of novelty, we should mention:
Field of application:
New rights are guaranteed:
For data controllers:
One stop shop – for data controllers operating in several EU Member States, the competent supervisory authority is the one in the Member State in which that operator has established its headquarter.
Data controllers’ accountability – emphasis is placed on the transparency towards the data subject and the data controller’s responsibility towards the way the data is processed.
Impact assessment – in the case of data processing involving a high risk for people’s privacy, the operator must conduct an impact assessment on privacy. The outcome of such an assessment will allow it to identify specific risks and adopt measures to prevent such situations to occur/result.
Data transfer outside the EU – for data transfers outside the Union, the Regulation introduces new instruments, in addition to those already established: BCR, standard contract clauses and European Commission Decisions on an adequate level of protection.
Privacy by design & Privacy by default – two new essential principles for data controllers:
Privacy by design – are you an application developer (who will also process personal data)? You must ensure, from the development stage, that your application will comply with the rules and principles set out in the Regulation.
Privacy by default – do you provide an application that processes personal data? You must ensure that the initial settings will allow users to maintain control of their private life / what they post or share with other users.
DPO – Data Protection Officer
The appointment of a DPO at the level of the data controller is one of the measures by which the data operators are to be made accountable. It provides the controller with the necessary advice to comply with all its obligations and to ensure the necessary transparency towards the data subjects.
Severe penalties – up to € 10-20 million or between 2% and 4% of the international turnover.
GDPR from the HR Sincron perspective
As a B2B software and services provider, HR Sincron operates in most cases as the entity empowered by its clients, in their capacity as personal data controllers.
In this respect, HR Sincron takes seriously the new regulations, being in full compliance process with the provisions of the Regulation, so that on 25.05.2018, both the Sincron HR Software platform and all related processes and activities comply with the requirements of the new legislation. We will continue to provide our clients with a software solution and complementary services that keep the quality standards and comply with the new legal requirements.
The website eu.sincronhr.com uses its own cookies and third-party cookies to provide visitors with a better online browsing experience and services tailored to the needs and interests of everyone.
In this notice, you'll find details about what cookies are, how we use them, the types of cookies that can be placed by visiting our site, and how you can manage, delete or reject them.
What is a cookie? An "Internet Cookie" (also known as "cookie browser" or "HTTP cookie" or simply "cookie") is a small file of letters and numbers that is stored on your computer, mobile terminal or other equipment of a user on which the Internet is accessed. The cookie is installed through a web browser (eg Internet Explorer, Chrome, Mozilla Firefox) and is completely "passive" (it does not contain software, viruses or spyware and can not access the information on the user’s hard drive).
Cookies themselves do not require personal information to be used and, in most cases, do not personally identify Internet users.
On this website, depending on their purpose, we use the following types of cookies:
Functional or preferences cookies - allow a site to retain information about the changes you make on how the website behaves or shows, such as your preferred language or region. These cookies are not essential to the use of the website. However, without them, certain functionalities may become unavailable.
Analytical or site performance cookies - collect information to statistically analyze how the site works. These cookies help us: understand how our site is being used, how effective our marketing campaigns are and how to personalize the site to improve your experience.
Analytical cookies may include advertisements on third-party websites. These cookies allow us to monitor and improve the functioning of our website.
Advertising cookies - these cookies can be set by us or by third parties, being used to show you more relevant advertising messages. For example, they prevent the same ad from reappearing continuously, ensuring the correct display of advertising messages and, in some cases, enabling advertising to be served according to your interests.
For more information, click here