Overview of ScreenSteps and GDPR

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that became effective in the European Union on May 25, 2018. It sets guidelines for the collection, storage, and processing of personal data of individuals within the EU. ScreenSteps has taken several measures to ensure compliance with GDPR and to protect the personal data of its users and their customers.

• GDPR is a key regulation for data privacy in the EU.
• ScreenSteps is committed to complying with GDPR requirements.

Key Terms

GDPR: The General Data Protection Regulation, a legal framework that sets guidelines for the collection and processing of personal information from individuals who live in the European Union.
Personal Data: Any information relating to an identified or identifiable individual.
DPA (Data Processing Agreement): A contract between a data controller and a data processor that outlines each party’s responsibilities regarding personal data.
Data Sub-processor: A third-party service provider that processes data on behalf of ScreenSteps.
Privacy Policy: A statement that explains how ScreenSteps collects, uses, and protects personal data.

• Understanding these terms is essential for grasping GDPR compliance.
• DPAs and Privacy Policies are central documents in data protection.

Background and Compliance Measures

ScreenSteps has taken several foundational steps to align with GDPR requirements:

• Consulted with external legal counsel to understand GDPR obligations.
• Conducted an internal audit to document data collection, storage, and usage practices.
• Updated its Privacy Policy to reflect GDPR standards.
• Revised its Data Processing Agreement (DPA) to address regulatory and operational changes. If you would like enter into a signed DPA, please contact us at [email protected].
• Maintains a list of data sub-processors and, where necessary, has entered into DPAs with them. ScreenSteps sub-processor list

For example, ScreenSteps ensures that any third-party service provider handling personal data on its behalf is contractually obligated to comply with GDPR requirements.

• Legal consultation and internal audits are key steps in compliance.
• Updated policies and agreements help protect user data.

Why GDPR Compliance Matters

Compliance with GDPR is important for protecting the privacy and rights of individuals. It also helps organizations like ScreenSteps build trust with users and avoid legal penalties. By maintaining transparency about data practices and ensuring that all partners and sub-processors adhere to GDPR, ScreenSteps demonstrates its commitment to data protection.

• GDPR compliance safeguards personal data and user trust.
• Transparency and accountability are central to effective data protection.