Exastax is ready for the GDPR
At Exastax, we take the issue of data protection and security very seriously and believe that GDPR presents an opportunity to further improve our services and products.
As Exastax we are well aware of our duties to data controllers, on behalf of whom we process data. Therefore, we have implemented measures in such a manner that processing will meet the requirements of the GDPR and ensure the protection of the rights of the data subject. We will be fully compliant with the GDPR starting 25 May 2018.
More information about GDPR
The General Data Protection Regulation (GDPR) strengthens European residents’ rights bearing on their data and increases accountability on the part of all stakeholders processing such data (controllers and processors), whether or not they are established in the European Union. GDPR will be applicable from 25 May 2018 across the whole of the European Union.
What kind of personal data GDPR protects?
GDPR covers both personal data and sensitive personal data. Namely:
- Basic identity information such as name, address and ID numbers
- Web data such as location, IP address, cookie data and RFID tags
- Health and genetic data
- Biometric data
- Racial or ethnic data
- Political opinions
- Sexual orientation
Under GDPR, only when the customers explicitly give consent, companies can acquire, retain, and access personal data. And the customers reserve the right to withdraw their consent at any time and request that a company erase their personal data.