Our clients’ privacy and security are at the heart of everything we do at AbacusNext. In light of the European Union’s new data privacy and protection rules known as the General Data Protection Regulation (GDPR), we have taken a number of steps to maintain our own compliance and to help our clients do the same. GDPR clarifies how the EU personal data laws apply even beyond the borders of the EU. Any organization that works with EU residents' personal data in any manner, regardless of location, has obligations to protect the data.
AbacusNext is committed to empowering professionals with most secure, compliant technology solutions available. We currently adhere to all relevant data protection and privacy regulations within the EU and elsewhere, including GDPR. We will continue assessing our processes and systems and reviewing current product features in order to implement necessary changes.
AbacusNext is headquartered in San Diego, California, but we have affiliated companies in the UK and primarily follow the advice of the UK Information Commissioners Office (ICO) to ensure we are meeting our obligations under GDPR. To see the steps the ICO lays out to ensure GDPR readiness, read our full compliance statement.
What Does this Mean for Our Clients?
GDPR dictates, and AbacusNext will ensure, that all clients for whom we control or process personal data, have the following rights:
- Right to be informed
- Right to restrict processing
- Right to object
- Right of access
- Right of data portability
- Right not to be subject to automated decision making and profiting
- Right to rectification
- Right to erasure
Please direct any questions or inquiries related to these rights to firstname.lastname@example.org
What Should You Do to Be GDPR-Ready?
As part of your own GDPR compliance plan, clients who are subject to the regulation will need signed verification that any data stored or processed by AbacusNext meets the data protection standards of GDPR. To assist you with your verification needs we have added a Data Processing Addendum (DPA) to the Terms and Conditions of all relevant AbacusNext products. We will contact directly all clients who are required to sign a DPA to maintain their compliance. If you have any questions about the DPA please contact us at email@example.com.
Learn More About GDPR
EU's General Data Protection Regulation (GDPR) is a game changer in data protection and privacy laws. The EU has realized that while technology has evolved drastically in the last few decades, privacy laws have not. In 2016, EU regulatory bodies decided to update the current Data Protection Directive to suit the changing times. This law creates a comprehensive list of regulations that govern the processing of EU residents' personal data.
GDPR applies to any organization that works with the personal data of EU residents. This law introduces new obligations for data processors while clearly stating the accountability of data controllers.
This law doesn't have territorial boundaries. It doesn't matter where your organization is from — if you process the personal data of subjects of the EU, you come under the jurisdiction of the law.
A breach of the GDPR incurs a fine of up to 4% of annual global turnover or €20 million (whichever is greater).
Any information relating to an identified or identifiable natural person. The identifiers are classified into two types: direct (e.g., name, email, phone number, etc.) and indirect (e.g., date of birth, gender, etc.).