The General Data Protection Regulation (GDPR) has meant changes for business to business (B2B) organisations to be fully compliant with the new rules by May 2018.

 

Opt-out rules for marketing and communications.

When emailing or texting employees of corporate companies for marketing communications HuRIS Solutions will ensure that simple and clear opt-out instructions are provided with the message.

 

HuRIS Solutions will ensure that the communications are relevant to the products or services of the business, and that they are relevant to the recipient’s job role.

 

If requested, HuRIS Solutions will be able to demonstrate to individuals how their data is stored in an easily accessible electronic format.

 

Procedure for possible data breaches

We have a dedicated Information Officer, Charles Osula, who will oversee and if necessary report any kind of event to the Information Commissioner’s Office (ICO).

 

HuRIS Solutions will be prepared for any possible infiltration or data breach in order to protect the rights and freedoms of individuals.

 

The 6 key GDPR principles that HuRIS Solutions will comply with when managing personal data are: -

 

That information will be,

  • Processed lawfully, fairly, and in a transparent manner relating to individuals.

  • Collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

  • Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.

  • Accurate and, where necessary, kept up to date.

  • Kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.

  • Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organisational measures.

January 2021