Alpha Hosting and the GDPR
The General Data Protection Regulation (GDPR) is a new regulation in the European Union (EU) that comes into effect on May 25, 2018. Since this is a regulation rather than a directive, it will instantly become law for all EU Member States when it goes into effect. The GDPR harmonizes data privacy laws across the EU and mandates how companies collect, store, delete, modify and otherwise process personal data of EU citizens. The GDPR applies to any company that processes personal data of EU citizens, regardless of whether such company has any physical presence in the EU, or even whether it has any EU customers. The UK is also committed to stay compliant with the GDPR despite Brexit.
We understand that ensuring compliance with a new set of privacy laws can be challenging. Our legal team has closely analyzed the requirements of the GDPR and continue to monitor new guidance on best practices for implementing the requirements of the GDPR and ensure we stay fully compliant. Rest assured that we are also dedicated to helping you, our customer, succeed in complying with the GDPR.
To get started with GDPR compliance, you should review your vendor and application list to get a good understanding of how data flows across your business. Identifying what types of personal data you collect, who has access to that data, and how that data is stored (if applicable) is of key importance. Once this has been identified, you can initiate a risk assessment to identify any compliance gaps that need to be addressed. As part of your risk assessment, you should review the software you are running to ensure they are compliant with the GDPR. For example, you may be running Magento, WooCommerce, or PrestaShop for your online store. The following links can serve as a guide for ensuring your eCommerce store meeds the new GDPR guidelines and stays up to date with any required changes:
For more information on the GDPR, we recommend reviewing the official GDPR FAQ which can be found here.