GDPR applies to any organisation in the EU that collects, stores or processes any data. This includes data from employees, business partners, customers and visitors. The GDPR’s main concept and principles are similar to that of the DPA however, there are new elements and significant enhancements so, you may have to carry out new procedures or modify existing ones. We have included a few examples of the rights individuals will have with regards to their data:
There are other rights as well under GDPR in addition to those mentioned here, and a great place to look for further information is the Information Commissioners website at https://ico.org.uk. They have produced a document "Preparing for the General Data Protection Regulation (GDPR) 12 steps to take now" which is a great place to start.
It has to be made clear that GDPR compliance refers more to the organisation and it's policies and procedures than it does to a product. Organisations are required to comply with GDPR and whilst EntrySign itself cannot guarantee that you will be GDPR compliant it does have many features and functionality to help you with this.
EntrySign helps your organisation become GDPR compliant in relation to your visitor management procedures and our latest v5 software has data management features specifically designed to help you comply with GDPR. With EntrySign you can clearly inform your visitors of your policies and procedures, including the ability to display a specific GDPR policy and, if required, request consent. Data retention settings can be configured to erase visitor data in line with your policies, and a GDPR strict mode allows data (perhaps stored for the purpose of providing fire evacuation lists whilst visitors are on-site) to be deleted automatically when they sign out if required.
Subject access requests, portability requests and erasure requests can all be handled quickly and easily from within the back office suite.
The EntrySign Back Office Suite allows you to easily see what data you hold about individuals as well as configuring data retention periods in line with your policies and procedures.
Every person has the right to access, erasure and data portability. EntrySign provides quick system-wide searches which allow you to view all information about a particular person and make access requests or portability requests at the click of a button.
It is important to let people know how you intend to use their information. With EntrySign you can clearly display your privacy notice or GDPR policy on the EntrySign screen every time visitors sign in or out.
In the event that someone wants their data erased, with EntrySign you do not have to search through archives for visitor books and erase their details.
A simple system-wide search allows you to find subjects quickly and with ease and delete entire records or individual elements of data if requested.
GDPR will bring in special protections for children’s data and how it is shared. In most cases this can be covered by your policies and consent procedures and whilst EntrySign integrates with popular MIS systems, built-in tools allow you to prevent data sharing for any given pupil or student, meaning the preferences of childrens parents & guardians are met.
If your lawful basis for collecting or processing data is consent, you may need to gain consent or refresh existing consents and this is made easy with EntrySign. On signing in, individuals can be presented with the information they require and given a clear agree / disagree choice. Consent can be given or declined with a tap of a button.
It is important to remember that the points made on this page are just examples of how the features of EntrySign can benefit your organisation and help you with GDPR compliance. Some parts of the GDPR will have more of an impact on some organisations than others. It is important to map out which parts of the GDPR will have the greatest impact on you or your organisation. We recommend that you access resources from your organisation’s governing body, local governing bodies or independent specialists to learn more about GDPR and how it affect your particular organisation.
Osborne Technologies provides opportunities for resellers and accredited partners to benefit from our market leading range of products.
Osborne Technologies Limited
Units 4&5 Wortley Court
Fall Bank Industrial Estate
t: 01226 295 455