On May 25, 2018, a new EU regulation, the General Data Protection Regulation (GDPR) will go into effect.
GDPR is a set of laws and guidelines to protect EU citizens' personal data and increase the responsibility of organizations to deal with that data in transparent and secure ways.
The GDPR applies to all businesses that gather, control, or process personal data of EU citizens.
However, Hostragon has always been open for registration to people all over the world and we are committed to providing the same level of data protection to all our users.
What is GDPR?
The General Data Protection Regulation (GDPR) is a new European privacy law due to become enforceable on May 25, 2018.
The GDPR will replace the EU Data Protection Directive, also known as Directive 95/46/EC, and is intended to harmonize data protection laws throughout the European Union (EU) by applying a single data protection law that is binding throughout each member state.
Who does the GDPR apply to?
The GDPR applies to all organizations established in the EU and to organizations, whether or not established in the EU, that process the personal data of EU data subjects in connection with either the offering of goods or services to data subjects in the EU or the monitoring of behavior that takes place within the EU.
Personal data is any information relating to an identified or identifiable natural person
What happens to current EU data protection laws after the GDPR comes into effect?
The GDPR will replace the existing Data Protection Directive (Europe Directive 95/46/EC).Beginning on May 25, 2018, the existing Data Protection Directive, and the laws relating to it will no longer apply.
Does Hostragon comply with a Code of Conduct as reflected in the requirements of GDPR?
Hostragon hosting infrastructure is in compliance with the CISPE Data Protection Code of Conduct.CISPE is a coalition of cloud infrastructure (also known as Infrastructure as a Service) providers who offer cloud services to customers in Europe.
The CISPE Code of Conduct helps cloud customers ensure that their cloud infrastructure provider is using appropriate data protection standards to protect their data consistent with the GDPR including notifications relating to data breaches, data deletion, and third-party sub-processing, as well as law enforcement, and governmental requests.
It also gives customers information, relating to data protection and data security, that they need to make decisions about compliance and to gain a full understanding of the high levels of security provided.
From our self-assessment, we have met:
We are a U.S based business but also offer our services to EU citizens and businesses.
The GDPR applies to all organizations that are established in the EU.
Data Subject Rights:
The GDPR enhances the rights of data subjects in a number of ways.
We have worked to ensure that we can accommodate the rights of data subjects since we are processing their personal data.
Data Breach Notifications:
We have in place a process to report data breaches to the data protection authorities and affected individuals without undue delay.
Data Protection Officer (DPO):
We have appointed a DPO to manage data security and other issues relating to the processing of personal data.
Data Protection Impact Assessment (DPIA):
We have conducted a self Data Protection Impact Assessment to ensure that we have in place data handling procedures and processes, as well as the controls in place to protect personal data.
To read more about the changes we made, please visit https://hostragon.com/privacy-policy.php
If you have any concern or question regarding this, please send an email to our Legal Department at firstname.lastname@example.org
The Customer Service Team
Monday, April 23, 2018