GDPR
Compliance Contact
& Information

In this area you will find some basic information on GDPR as well as contact information for our partner Christopoulos Advocates that will help you in becoming compliant.

Please note that eSGR is not providing compliance services, these are handled by our partner Christopoulos Advocates. We are only offering consulting services to customers for services they host with us.

When will GDPR be active?

The regulation was approved in April of 2016 and will take effect on May 2018.

Am I affected?

GDPR affects everyone including companies not in the EU as long as they offer goods, services or log information of EU citizens.

What about the UK?

All UK companies will have to abide by the regulations even after the exit of the UK from the EU market.

What are the penalties?

Non compliance with GDPR will be fined with up to 4% of the global turnover of the company or €20.000.000 which is larger for each infraction. Please note that being fined doesnt bring indemnification for ANY period of time.

Are there other fines?

Yes, GDPR has a multi tier approach in applying penalties and it is up to the severity of the infraction.

Is GDPR legally binding ?

Yes it is. GDPR is a regulation not a directive, every EU country and all countries that are offering or planning to offer goods, services or data logging are legally bound to it.

What are Personal Data?

Any information stored or processed of a natural person (Data Subject) that is used or can be used to directly identify that person.

Data Subjects under the age of 16

As of now any natural person that is under the age of 16 is not authorised to provide personal identifying information of any kind. The information has to be provided by the Parent or Guardian. The processor or controller has to verify the age of the subject.

Reading Material

Wikipedia
GDPR (PDF)