Skip to main content
search

How do you handle your customers’ privacy?

We live in a data age. Driven by ambitions around “digital transformation,” organizations are collecting more and more data about their customers. By doing so, they hope to achieve (growth) goals.

 

This, often enormous, amount of data requires much more specific attention than most organizations realize. Do you know that the basic principle is that you cannot keep more data than you need for your primary business operations?

 

To what extent do you consider the privacy sensitivity of your data? What measures have you taken to protect that privacy? Avoid unnecessary or unwanted processing of personal data. Remember that the functionality of your information management system need not be lost in the process.

 

 

Privacy by design

Customer data should be used only for the purpose for which it was collected. This means that, for example, you may use billing information only for billing purposes. And therefore not for marketing other services.

 

In our next two articles, we offer tools for privacy protection using “privacy by design. Here, we focus on three techniques that will help you comply with AVG legislation.

 

 

Privacy regulations: the AVG

The AVG applies to personal data. This includes not only personal information, but – under specific circumstances – also things like a person’s surfing habits or call history, for example.

 

If data processing is going to take place with a high privacy risk, the AVG requires a data processor to conduct a Privacy Impact Assessment (PIA). This assessment is mandatory from 2018 for data processing operations with high privacy risk. With the hefty fines in mind, it is extra important to be alert to whether this is the case with planned actions.

 

The AVG does not apply to data “rendered anonymous in such a way that the person to whom it relates is no longer identifiable.”

 

In our next articles, we explain what the privacy risks may be. We outline options for preventing and/or reducing these risks. With these recommendations, principles such as data minimization, proportionality (I only do what I need to do) and subsidiarity (what I do I can do another way) are monitored in a structural way within your organization.

 

 

Stay tuned!

Want to be notified of our next articles on this topic? Follow us on LinkedIn or sign up for our newsletter.

 

Stay tuned >

 

Contact

Want to know more about this topic? If so, please contact Michaela Legerstee or Jeroen Groothedde using the contact information below.

 

Michaela Legerstee, Senior Consultant

 

+31 6 31 00 52 81

 

m.legerstee@cmotions.nl
Jeroen Groothedde, Senior Consultant

 

+31 6 22 88 89 98

 

j.groothedde@cmotions.nl

Michaela Legerstee
Senior Consultant info@cmotions.nl
Jeroen Groothedde
Senior Consultant j.groothedde@cmotions.nl
Close Menu