The answers to the questions you were asking yourself about GDPR, Realytics, and your data
According the GDPR, what are Realytics’ obligations?
– We adopt a privacy by design approach, where we develop new tools and solutions that already have a high degree of protection: the new tool promotes, from the beginning, privacy and data protection compliance.
– We are training our teams to be GDPR compliant and respectful of individual rights. We actually did not wait for GDPR to process our data in a respectful way!
– We make sure our partners are GDPR compliant and respect the way data must be collected and stored.
What is personal data, according to GDPR?
Article 4 of GDPR defines personal data as “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”
However, GDPR does make a distinction with data going under pseudonymization, meaning the “processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person;”
Does Realytics collect any personal data? If so, what kind?
. The only personal data we collect would be the first name, last name and email of our clients that register on our portal.
. We do collect cookies of visitors, which is considered as a personal data, but is pseudonymized afterwards. We make sure, therefore, that the personal data can’t be attributed to an identified or identifiable person.
What is sensitive Data, according to GDPR?
Article 9 of GDPR defines processing of “special categories of personal data” as processing any data “revealing
– racial or ethnic origin,
– political opinions,
– religious or philosophical beliefs,
– trade union membership,
– genetic data,
– biometric data for the purpose of uniquely identifying a natural person,
– data concerning health
– data concerning a natural person’s sex life or sexual orientation”
Does Realytics collect any sensitive data? If so, what kind?
No, Realytics does not collect nor process any sensitive data.
GDPR, here we come!
Realytics has been adapting its way of thinking and of working for months now, in order to be GDPR compliant by May 25th. Being respectful of personal data has always been the way business is done here. “Being GDPR” compliant is all we can hear about those days, but the previous applicable law (of which GDPR is like 80% similar), has been governing in France since… 1978!
GDPR will not affect Realytics or the way we’re working. We’ve been very careful of collecting only pseudonymous data, and the only personal data we collect and store is well taken care of.