Understanding what general data protection regulation (GDPR) is is very important for website owners. Because, this rule appears for the common good so that personal data can be maintained properly.
This regulation is present considering the development of the internet and the website , because these two things are inseparable from modern life today. Especially with the existence of various cases of hacking that have damaged various websites, so that the personal data of the users is threatened.
So, with this rule, every website owner must create a sophisticated security system to prevent being compromised. If the GDPR is not complied with, the site owner will be fined up to billions of rupiah.
What is a General Data Protection Regulation (GDPR)
GDPR is a rule relating to personal data. The data must be well protected and no one should use it without the permission of the owner of the data.
These regulations apply to all persons in various parts of the world who have a service for storing, managing or processing the personal data of the European Union community.
Therefore, every site owner who is freely accessible and has cookies that can collect data must comply with these rules.
This rule does not know what type of website you are using. Be it company websites , marketplaces to personal blogs, you must comply.
The Essential Rules of the GDPR
Indonesia’s General Data Protection Regulation is not much different from the ones in general. Because the point is to make website owners aware of the security of personal data.
So, webmasters must follow some basic rules which are listed below. If there is negligence, then the site owner can be fined an amount that is not kidding. The rules include:
1. Immediate Information If An Attack Occurs
If the site you manage is hit by a hacker attack , then within 72 hours all users registered on the site must have obtained this information.
If possible, this should be done within 2 × 24 hours. The goal is that users can immediately change their id and password . Because, various important personal data are threatened by these hackers .
The hacker can utilize the data to do some bad things, which certainly hurt you.
2. Ease of Accessing Data Freely
Every user actually has absolute rights that the website owner must obey . For example, they have access to personal data starting from the collection process, what data they collect and what use it is for.
Not limited to that, users can also request a copy of their personal data whenever they need without any additional costs. The site owner must comply with this and comply with user requests . If possible, provide the full data as it shows you did not manipulate the data.
When you get various data from users, you must change the identity of the owner of the data to anonymous. Especially for the needs of a website -based company
This aims to maintain the privacy of data owners, so that no one can freely utilize their data.
3. Freedom to Erase Data
One of the contents of the GDPR is that users can easily delete their registered data on a website . Users can make direct requests, so you can’t use their data forever.
You must fulfill this request so that the security and privacy of user data is well maintained.
4. Data Transfer
Users are also free to move their data at will. Site owners should not complicate this matter. On the contrary, webmasters must participate in helping users, so that the data transfer process can be carried out properly and smoothly.
5. Has a Special System Security Officer
Another thing that every webmaster must obey is that there are special experts in charge of maintaining the security of the website system . So, with the help of these employees you have carried out the GDPR well.
If you can’t find the employee. So, you can use the services of experts who are experts in the field of system security. One such expert is VPS domainesia .
You can ask a variety of services that exist directly, complete with costs. Make sure you use the best service provider so that website security and data privacy are well maintained.
Impact of the GDPR
This GDPR regulation is actually specifically given to safeguard the privacy data of the European Union people. However, existing regulations are not only beneficial for people on one continent but also on other continents.
Therefore, many countries have implemented this GDPR. If there is a question ” does the GDPR apply in Indonesia ?”, Then the answer is yes.
This rule is also binding on large global scale companies, because they believe that consumer or user trust is the most important.
If they lose that trust, the company will have to pay a heavy price to restore the reputation they lost. The GDPR also supports this by providing a fine of 20 million euros or around Rp344 billion for those who violate these rules.
This number is very large, so that every company or individual should think about this carefully.
Another form of penalty is that the site owner may not use user data registered on his website in any form. So, if the company is engaged in the digital world, its operations will die. Certainly the company will suffer losses.
Through the description above, you now understand what a General Data Protection Regulation (GDPR) is , at a glance the existing rules and their impacts. Every webmaster must comply with this matter properly because it can maintain the good name of the website as well as the personal data of users registered on the site.