The General Data Protection Regulation (GDPR), a new EU wide law, is set to come into effect on the 25th May 2018. It is designed to harmonise data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organisations across the region approach data privacy. For more information about the GDPR, please refer to the EU’s GDPR Portal.
The GDPR strengthens the rights of individuals with respect to personal data. This means that Visma, as a software service provider, must strengthen the security measures that protect the personal data of our customers and individuals registered in our systems. As well as the features that enable our customers and individuals that use our services to exercise their rights.
It also means we must design our systems so as to enable you, our customers, to meet your obligations as the data controller for the data you process using our systems and services.
Visma naturally sets out to ensure that all of our software services, to the very best of our efforts, are compliant with the GDPR. Therefore, we have designed a comprehensive framework specifically with the GDPR in mind, comprised of the following main components:
Training for our employees
Privacy and data protection built into development and production
Dedicated data protection manager
A revised data processing agreement