GDPR Statement April 2018

GDPR Statement April 2018

How Clearway is preparing for the GDPR

Our commitment on the upcoming EU Data Regulation

The EU General Data Protection Regulation (GDPR) will set a new standard for how companies use and protect EU citizens’ data and this will take effect from 25th May 2018.

At Clearway, we are working hard to prepare for the GDPR in combination with ISO 27001 (information security management) to ensure that we fulfil its obligations and maintain transparency.

Below is more information about GDPR together with an outline of what we’re focusing our attention on to ensure we’ll meet the GDPR obligations:

What is the GDPR?
The GDPR replaces the Data Protection Directive 95/46/EC and was designed to harmonise data protection laws across Europe; to protect and empower all EU citizens’ privacy and to reshape the way organisations across the region approach data privacy. The GDPR comes into effect on May 25, 2018.

How is Clearway Services preparing for the GDPR?
Our team has been working to define our the GDPR roadmap. We want to ensure we meet our legal obligations and do the best we can for our customers, while allowing us to remain agile, scale and build great products and services.

We’re updating our Data Processing agreements:
Strong data protection commitments are a key part of the GDPR’s requirements.
Our updated data processing agreement shares our privacy commitments and sets out the terms for Clearway and our customers to meet the GDPR requirements. New agreements will become available in due course.

Identifying personal data:
Each of our processes undertakes a different level of personal data collection, usage, storage and disposal. Defining the scope of personal data and documenting the various sources will aid in our developing roadmap for compliance.

We’re updating our Privacy Policy:
During the preparation process our Privacy Policy will be updated to ensure it meets the new standards.

We’re coordinating with our suppliers
We’re reviewing all our suppliers to ascertain their GDPR plans for compliance and arranging similar GDPR-ready data processing agreements with them.

Google Cloud services and GDPR:
Google is committed to GDPR compliance and currently holds ISO 27017:2015 certification (information security controls for Cloud services) across all the Cloud services that Clearway utilises.

Questions?
The above statement refers to an ongoing process to be ready for the May 25th 2018 and will be updated as changes are implemented.

If you have any questions in the meantime, please contact us.