GDPR


The General Data Protection Regulation (GDPR), agreed upon by the European Parliament and Council in April 2016, will replace the Data Protection Directive 95/46/ec in Spring 2018 as the primary law regulating how companies protect EU citizens' personal data. Companies that are already in compliance with the Directive must ensure that they are also compliant with the new requirements of the GDPR before it becomes effective on May 25, 2018. Companies that fail to achieve GDPR compliance before the deadline will be subject to stiff penalties and fines.

GDPR requirements apply to each member state of the European Union, aiming to create more consistent protection of consumer and personal data across EU nations. Some of the key privacy and data protection requirements of the GDPR include:

    SMIHAF Requiring the consent of subjects for data processing

    SMIHAF  Anonymizing collected data to protect privacy

    SMIHAF Providing data breach notifications

    SMIHAF Safely handling the transfer of data across borders

    SMIHAF Required to appoint a data protection officer/Consultant to oversee GDPR compliance 


The GDPR mandates SMIHAF to maintain a baseline set of standards in handling all EU citizens’ data to better safeguard the processing and movement of citizens’ personal data.  and any other personal information(s) held on our systems or databases.