AVG stands for General Data Protection Regulation and will be immediately applicable from 25 May 2018. You may have also heard of it under the abbreviation GDPR, which is the abbreviation of the English titles General Data Protection Regulation. In any case: it will replace our Personal Data Protection Act. Yes, there will probably be a new Dutch law based on the AVG, but that will take some time. Until then, what should you do to avoid fines?
Let's face it, AVG is not new
Look, let's not pretend that the GDPR suddenly sets a lot of new requirements. We have already had to treat the privacy of our customers and other individuals with care. But not everyone is aware of it. Because the GDPR is in the news now, many websites write about it and you can read a lot about it, many people panic. That is absolutely unnecessary! I help you with the adjustments that are necessary.
Update your privacy statement
In all cases it was, is and will be important that you clearly inform people about what you do with their personal data. That was already necessary. The privacy statement just needs to be much more extensive. Depending on how your company is set up, what data you collect and what you do with it, you should inquire about at least 11, but perhaps more things. For example, which data you collect, for what purpose you do this, how long you keep it (infinite is not an option here), who the recipients of the personal data are (such as the hosting party that stores the data on servers for you), can be against the processing, that people have the right to inspect and change their data and that they can complain to the Dutch Data Protection Authority. Read more about all 11 obligations in this blog post ' You need a new privacy statement before May 25, 2018 '.