Now that the enforcement date has passed, let’s not fall asleep at the switch. It’s important to continue to be vigilant, because it's not just the European Union but certainly countries around the globe are continuing to increase their enforcement of organizations of how personal data is treated. Here’s a few key concepts, or new trends emerging, to help clarify some of the new provisions within GDPR.

Martin Willoughby / SVP of General Counsel and Chief Privacy Officer / Bomgar

Martin shared more insight into the importance of data protection and design by default in an exclusive webinar, Post GDPR: The Critical Importance of Securing Remote Access. He also calls out some emerging trends as a result of GDPR going into effect, including:

Data Protection by Design and Default

A lot of times, this is also referred to as privacy by design, which has always been a part of data protection regulations. The difference now under GDPR is that it is an actual legal requirement.

That's an important distinction – now a legal requirement. GDPR requires you to put in place appropriate technical and organizational measures to implement the principles found in the GDPR and to safeguard the individual rights of users. Data protection by design is really about considering data protection and privacy issues up front in everything you do. Whether it's your products, processes or how you operate your organization.

The days of pre-ticked boxes and automatic opt-in are gone, and now we’ve moved more toward transparency. We want to let people know what data we're capturing, how we're going to use that data. There's really a burden or an obligation on the organization who's collecting that data to have a lot of transparency and to inform people of their rights as it relates to that data. An important key concept here that's changed is the level of scrutiny on the consent and the transparency of information that we provide about the use of data.

Right to Erasure

Finally, if we bring all this back to what this whole regulation is about the data subjects rights, really thinking about this as a fundamental right of the individual: the right to erasure, also known as the right to be forgotten. The concept here is that when an organization no longer has a reason to keep the data for somebody, then there is an obligation to go ahead and remove it from your systems.

Bomgar Remote Support Fosters GDPR Compliance

For more details about the new regulations, what you could be held responsible for, and how Bomgar can help foster GDPR compliance, check out the full, on demand webinar!

Photograph of Jonas Outlaw

Jonas Outlaw, Senior Product Manager

As Senior Product Manager, Jonas works with a variety of stakeholders in the product development lifecycle to help drive product direction and enhancements. Jonas brings more than a decade of experience to BeyondTrust in various aspects of applications development, systems engineering and product management. Prior to joining BeyondTrust, Jonas was a systems engineer at a large life insurance company. He received his MBA with a concentration in Management Information Systems from Mississippi College.