GDPR Communications Notice
What has RV Business done about the GDPR?
RVBusiness began to dedicate internal resources to the GDPR because we value our EU based customers (and their advertisers) rights to privacy. RVBusiness has also engaged with outside professionals to confirm our approach is ensure GDPR compliance. We felt this was, and will be, very important because GDPR legislation is so new and far reaching. Accordingly, we have taken appropriate steps to store all data in accordance with EU compliance standards and prevailing international law and regulations.
Here’s a condensed version of our GDPR Roadmap:
- Thoroughly research the areas of our business impacted by GDPR.
- Appointment of a Data Protection Officer.
- Written our Data Protection Agreement for EU customers.
- Developed a strategy and requirements for how to address the areas of our product impacted by GDPR.
- Performed the necessary changes/improvements to our management of data based on GDPR requirements.
- Implemented the required changes to our internal processes and procedures required to achieve and maintain compliance with GDPR.
- Finalized and communicated our full compliance in our website and data management practices.
What changes has RVBusiness made to be GDPR Compliant?
We have taken many steps across the entire company to ensure our compliance with the GDPR. We have improved anonymity within our analytics tools and have made changes to allow you to make confirm your consent.
We have also worked on website interfaces that allow you to address requests related to rights for accessing any personal data that might be stored in any advertiser account.
Based on the research conducted todate, we are confident these changes address the requirements of the GDPR.
What do RVBusiness Advertisers need to do?
There are two things that you might need to do depending on your situation and jurisdiction. Below are the only impactful changes that we can foresee that might affect you as a result of using the RVBusiness website:
- If you are an advertiser based or operating within the European Union, you’ll likely want to sign a Data Processing Agreement. We’re happy to do so.
- You can review, print and sign a copy of the Data Processing Agreement here. e will countersign it and provide you with a fully executed downloadable copy via email within 5 business days. If you have any questions about its contents simply email us.
I’m new to the GDPR and would love more details on what it is
The General Data Protection Act (GDPR) is considered to be the most significant piece of European data protection legislation to be introduced in the European Union (EU) in 20 years and will replace the the 1995 Data Protection Directive.
The GDPR regulates the processing of personal data about individuals in the European Union including its collection, storage, transfer or use. Importantly, under the GDPR, the concept of “personal data” is very broad and covers any information relating to an identified or identifiable individual (also called a “data subject”).
It gives data subjects more rights and control over their data by regulating how companies should handle and store the personal data they collect. The GDPR also raises the stakes for compliance by increasing enforcement and imposing greater fines should the provisions of the GDPR be breached.
The GDPR enhances EU individuals’ privacy rights and places significantly enhanced obligations on organizations handling data.
In summary, here are some of the key changes to come into effect with the GDPR:
- Expanded rights for individuals: The GDPR provides expanded rights for individuals in the European Union by granting them, amongst other things, the right to be forgotten and the right to request a copy of any personal data stored in their regard.
- Compliance obligations: The GDPR requires organizations to implement appropriate policies and security protocols, conduct privacy impact assessments, keep detailed records on data activities and enter into written agreements with vendors.
- Data breach notification and security: The GDPR requires organizations to report certain data breaches to data protection authorities, and under certain circumstances, to the affected data subjects. The GDPR also places additional security requirements on organizations.
- New requirements for profiling and monitoring: The GDPR places additional obligations on organizations engaged in profiling or monitoring behavior of EU individuals.
- Increased Enforcement: Under the GDPR, authorities can fine organizations up to the greater of €20 million or 4% of a company’s annual global revenue, based on the seriousness of the breach and damages incurred. Also, the GDPR provides a central point of enforcement for organizations with operations in multiple EU member states by requiring companies to work with a lead supervisory authority for cross-border data protection issues.
Att: Managing Editor / Data Controller
2901 E. Bristol Street, Suite B
Elkhart, Indiana 46514