What does GDPR mean for us?
The General Data Protection Regulation (GDPR) is the new data protection law approved by the European institutions and will be directly applied across all European countries from 25th May, 2018. At its core, GDPR aims to implement a new set of rules regarding personal information that is more in line with our current digital world.
Implications for companies?
GDPR legislation applies to any organisation operating in the EU and to customers in this geography, which is basically all the digital businesses nowadays. There are two types of roles within GDPR – the controller which is “the entity who determines the purposes and means of the processing of personal data” while the processor is “the entity which processes data on behalf of the controller”.
Rights that extend to all EU citizens
- Right to be informed about the identity and the contact details of the controller and of the data protection officer (where applicable), the purposes of the processing of personal data, the legal basis for the processing, the period the personal data will be stored, and if the controller intends to transfer personal data to a third country or international organization.
- Right to Access personal data that is being processed and the purposes of the processing, the categories of personal data concerned, the recipients to whom the personal data has been sent to or will be disclosed to, and the envisaged period for which the personal data will be stored.
- Right to Rectification of inaccurate personal data concerning the data subject.
- Right to erasure of personal data is no longer necessary in relation to the purposes for which they were collected (or otherwise processed), if the data subject withdraws consent on which the processing is based on or if the personal data has been unlawfully processed.
- Right to restriction of processing where the accuracy of personal data is contested by the data subject, the processing is unlawful, or when the controller no longer needs the personal data for the purposes of the processing.
- Right to Data Portability means the right to receive the personal data the data subject has provided to a controller, in a structured, commonly used and machine-readable format.
- Right to object at any time to processing of personal data concerning the data subject.
- Right not to be subject to a decision based solely on automated processing including profiling.
GDPR Compliance At Codacy
As we build our products and expand into new ones, protecting your data and your privacy are a priority. At Codacy, we have always been committed to keeping your personal data safe and secure, and the GDPR does not change our commitment. We treasure your data, aiming to only use it for verifying your identity, enabling transactions, and improving our products and services.
- Control: Our Policy now explains the control you have over information about you and your online activities. At any time, you can request information about the personal data we collect, request corrections or erasure of certain personal data, or request we stop processing your personal data in certain ways;
- GDPR: We have included additional language to discuss rights for users located in the European Union (EU);
- Data Processing Agreement (or Addendum): We provide a data processing agreement or addendum, which allows EU customers and data controllers to enter into standard contractual clauses to govern the processing and handling of EU personal data.
Please reach out to firstname.lastname@example.org if you have any questions.
Codacy is used by thousands of developers to analyze billions of lines of code every day!
Getting started is easy – and free! Just use your GitHub, Bitbucket or Google account to sign up.