GDPR - The Personal Data protection law
GDPR is short for General Data Protection Regulation and is the new legislation for all member countries in the EU starting May 25, 2018.
At Artisan Global Media, we have, of course, conformed to this new law and made some changes to our company policies.
Artisan Global Media – committed to GDPR compliance
Artisan has a strong commitment to fulfilling the new regulation. One important step to achieve this has been the certification of our information security according to ISO 27001. In the light of this, we can assure all our customers that we uphold a high level of information security and GDPR compliance. Our services and our programs have the necessary features to meet the new requirements.
New Data Processing Agreement for SaaS customers
During 2018 all SaaS customers will receive a new Data Processing Agreement from Artisan Global Media. This agreement is based upon the Swedish IT and Telecom Industries standard agreement.*
- Cloud services, General regulations, version 2013
- Specific agreements regarding the management of personal data in connection to Cloud services
"Specific agreements regarding the management of personal data in connection to Cloud services" is the new Data Processing Agreement. We will contact every customer separately to sign a new SaaS agreement. Please note that the prices will remain the same. The purpose of the change is only to adjust the agreements according to the new legislation.
Controllers and Processors of Personal Data
In managing personal data, there are two roles to be aware of:
Controller - A controller is responsible for managing personal data and determines the purposes and means of processing personal data. The controller ensures that the law is adhered to and shall inform the persons who's personal data is being managed. The controller also ensures that the Personal Data Processor complies with its obligations.
Personal Data Processor – manages the personal data on behalf of the Personal Data Responsible and is responsible for the technical and organisational security measures.
The SaaS customer is the controller of personal data, and Artisan Global Media, providing the software, is the personal data processor.
The customer's responsibilities as Controller of Personal Data
The customer is responsible for and manages all handling of Personal Data in the software. The customer is the controller of personal data and has this function towards its users/clients/respondents etc.
Artisan Global Media's responsibilities as Processor of Personal Data
By providing the Artologik software as a SaaS, Artisan becomes Personal Data Processor for SaaS customers. Artisan Global Media takes technical and organisational security measures to ensure customer safety regarding Personal Data being handled in a safe way and in appliance with the law.
GDPR guides to your Artologik Software
Below you will find links with information about how Artologik software can help your organisation comply with GDPR.
Please note that we are investing in additional functionality to help you meet GDPR requirements; new versions of all programs will be released shortly. The documentation below is based on functionality both from the latest released and coming versions.
*The IT and Telecom Industries refers to the Swedish IT and Telecom Industries - a member organisation for companies of all sizes within the entire IT and telecom sector in Sweden.