Expert Advice Community

Guest

GDPR and impact assessment on data protection

  Quote
Guest
Guest user Created:   Dec 23, 2019 Last commented:   Dec 23, 2019

GDPR and impact assessment on data protection

So we have this software where people make recommendation for friends to buy goods, and in the process of buying with credit card's etc customer information is disclosed. how can we make sure people don't use those info; to hack or etc other customers? In summary: like how do we protect customer data when a project went live.?
0 0

Assign topic to the user

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

EU GDPR DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Andrei Hanganu Dec 23, 2019

So we have this software where people make recommendation for friends to buy goods, and in the process of buying with credit card's etc customer information is disclosed. how can we make sure people don't use those info; to hack or etc other customers?

If credit card data is processed you need to ensure that you are PCI compliant or that you use a third party that it is PCI compliant.

Regarding the use of other personal data besides credit card data, you need to follow the GDPR principles and apply adequate security measures as per art. 32.

In summary: like how do we protect customer data when a project went live.?

Another thing you need to consider is having adequate Terms and Conditions so the users have a clear view of what they can do and what is forbidden.

I would advise you to perform a Data Protection Impact Assessment before going live.

You can find out more about Data Protection Impact Assessment from thus fee webinar Seven steps of Data Protection Impact Assessment (DPIA) according to EU GDPR: https://advisera.com/eugdpracademy/webinar/seven-steps-of-data-protection-impact-assessment-dpia-according-to-eu-gdpr-free-webinar-on-demand/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 23, 2019

Dec 23, 2019

Suggested Topics

Guest user Created:   Jul 11, 2019 EU GDPR
Replies: 1
0 0

GDPR Readiness Assessment and DPIA

Guest user Created:   Jan 18, 2019 EU GDPR
Replies: 1
0 0

The scope of DPO's tasks

Guest user Created:   Nov 05, 2021 EU GDPR
Replies: 1
0 0

Questions for DPIA