top of page

Rules and Regulations

Privacy update (GDPR) 

As an Art enthusiast, I would like to inform you herewith of the new European Union (EU) enforced data protection law, which is the General Data Protection Regulation (GDPR / Regulation (EU) 2016/679, since May 25, 2018)

 

It is all about transparency and communication with my site and how your data is used.

Please be informed that your contact data serves only the purpose of contact (communication) between you and me, so that I can provide a service to you, according your wishes.

Under no circumstances is your information forwarded to any third party or sold for gains.

I also would like to ask you not to send me or disclose any additional, sensitive personal data in regard to ethnic or racial origin, religion or other beliefs, no political opinions or personal political preferences, health information or any other information that does not correspond to the business in between you and me. Should I still receive any such data, I will delete immediately such non relevant information and not retain any part of such data. 

​

 

Wikipedia source for more information. 

​

Regulation (EU) 2016/679

European Union regulation 

Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Data Protection Directive)

 

The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union and the European Economic Area. It also addresses the export of personal data outside the EU and EEA. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

 

Superseding the Data Protection Directive 95/46/EC, the regulation contains provisions and requirements pertaining to the processing of personally identifiable information of data subjects inside the European Union, and applies to all enterprises, regardless of location, that are doing business with the European Economic Area. Business processes that handle personal data must be built with data protection by design and by default, meaning that personal data must be stored using pseudonymisation or full anonymisation, and use the highest-possible privacy settings by default, so that the data is not available publicly without explicit consent, and cannot be used to identify a subject without additional information stored separately. No personal data may be processed unless it is done under a lawful basis specified by the regulation, or if the data controller or processor has received explicit, opt-in consent from the data's owner. The data owner has the right to revoke this permission at any time.

 

A processor of personal data must clearly disclose any data collection, declare the lawful basis and purpose for data processing, how long data is being retained, and if it is being shared with any third-parties or outside of the EU. Users have the right to request a portable copy of the data collected by a processor in a common format, and the right to have their data erased under certain circumstances. Public authorities, and businesses whose core activities centre around regular or systematic processing of personal data, are required to employ a data protection officer (DPO), who is responsible for managing compliance with the GDPR. Businesses must report any data breaches within 72 hours if they have an adverse effect on user privacy.

 

It was adopted on 14 April 2016, and after a two-year transition period, became enforceable on 25 May 2018. Because the GDPR is a regulation, not a directive, it does not require national governments to pass any enabling legislation and is directly binding and applicable. As the United Kingdom is leaving the European Union in 2019, it granted royal assent to an equivalent Data Protection Act 2018 on 23 May 2018, which contains requisite regulations and protections.

​

For more in-depth information in regard to this subject with all chapters. Please visit the following website. 

​

Intersoft consulting ( General Data Protection Regulations ) - https://gdpr-info.eu/

EU GDPR Information Portal - https://www.eugdpr.org/

​

​

bottom of page