The General Data Protection Regulation (GDPR) Personal data in SOS International

Similar documents
Data Processing Appendix

WHAT DOES THE GDPR MEAN FOR PENSIONS? HANDY GUIDE

WHAT DOES THE GDPR MEAN FOR PENSIONS?

THE IMPACT OF THE CALIFORNIA CONSUMER PRIVACY ACT

GDPR DATA PROCESSING ADDENDUM INSTRUCTIONS FOR JOSTLE CUSTOMERS

ADDSECURES WAY OF PROCESSING PERSONAL DATA

Even If You Are a U.S. Company, Don t Ignore the GDPR: Complying with the EU s New Data Privacy Law

Member Circular March Implementation of the EU General Data Protection Regulation 2016/679 General Guidance to Members

GDPR Essentials. To Meet the May 25th Deadline. FIA Webinar March 1, 2018

The contract is important so that both parties understand their responsibilities and liabilities.

GDPR: Frequently Asked Questions to Brokers Ireland, February 2018.

Pension Trustees. Final Countdown to the GDPR

CLOUDINARY DATA PROCESSING ADDENDUM

Hillgate Travel GDPR Response. Privacy Policy

ARE YOU READY FOR THE NEW DATA PROTECTION LAWS?

DEAL BY SEA LTD PRIVACY NOTICE

LOCAL GOVERNMENT ASSOCIATION TEMPLATE MEMORANDUM OF UNDERSTANDING FOR LGPS FUNDS

CLIENT DATA PROCESSING AGREEMENT

DATA PROCESSING ADDENDUM

Data Processing Addendum

GDPR FOR PRIVATE EQUITY AND REAL ESTATE

Pension Trustees Final Countdown To GDPR

Customer GDPR Data Processing Agreement

DATA PROCESSING ADDENDUM (v1.0)

General. Application of these terms and conditions. Dispute resolution. Reisegarantifondet (RGF) Data Protection. Brochure and website content

Data protection Your privacy is important to us

The Future of Data Privacy in Europe T H E E U R O P E A N G E N E R A L D ATA P R I VAC Y R E G U L AT I O N (G D P R)

DATA PRIVACY & FAIR PROCESSING NOTICE

The GDPR how to prepare MiFID II where are we now? Wednesday 21 February 2018

The Swedish Club Privacy Policy May 2018

The Era of GDPR Data Privacy, Two Months In: Do you have a Data Transfer Agreement handy? July 31, 2018

DATA PROCESSING ANNEX

Michael R. Cohen CIPP/US, CIPP/E Gray Plant Mooty. Overview of the EU General Data Protection Regulation (GDPR)

IRIS Group of Companies Customer Data Processing Terms

GDPR Data Processing Addendum

DATA PROCESSING TERMS DEFINITIONS

TEREX CORPORATION DATA PROTECTION POLICY

New legislation brings changes to how data is handled

GDPR update and its impact on accountancy practices

California s Consumer Privacy Act Vs. GDPR

A Million Thanks - Application for Wish Grant

North Yorkshire Pension Fund

GDPR CCPA LGPD. Protected information

THE IRON MOUNTAIN GDPR JARGON BUSTER

The General Data Protection Regulation s Impact on M&A

GROUP PRIVACY POLICY. Adopted June 20th, 2017 by each of the Boards of Carnegie Holding AB and Carnegie Investment Bank AB (publ).

2018 Australian privacy outlook

Data Processing Addendum

Guidance: The new EU General Data Protection Regulation: Implications for Australia

Processing under the GDPR: risk and liability shifts

General Terms and Conditions regarding training courses and campaigns and/or projects of Schreibmotorik Institut e.v.

General Terms and Conditions regarding training courses and campaigns and/or projects of Schreibmotorik Institut e.v.

Data Processing Addendum

Financial Services Authority

KATOEN NATIE ANTI-BRIBERY AND CORRUPTION POLICY

PERSONAL DATA PROCESSOR AGREEMENT

DATA PROTECTION NOTICE

TEMPLATE: COMMENTS ON THE DRAFT "RECOMMENDATIONS FOR PAYMENT ACCOUNT ACCESS SERVICES"

Licence Agreement

Data Processing Appendix

NEW PATIENT PACKET includes the following forms:

Privacy vs Data Protection: The Impact of EU Data Protection Legislation

Tech and Cyber Claims Services

GDPR: The Most Frequently Asked Questions: Are the Standard Contractual Clauses Enough?

DATA PROCESSING AGREEMENT ( AGREEMENT )

KIKOFF Conditioning - Terms and Conditions

HIPAA vs. GDPR vs. NYDFS - the New Compliance Frontier. March 22, 2018

Managing Restrictive Covenants in the European Pan-Nordic Region. Tuesday, January 26, 2016

GDPR : We protect your data

MISCELLANEOUS CONSULTANTS PROFESSIONAL INDEMNITY PROPOSAL FORM

GDPR Data Processing Addendum (DPA) Instructions for Area 1 Security Customers

DATA PROCESSING AGREEMENT/ADDENDUM

Moxtra, Inc. DATA PROCESSING ADDENDUM

Privacy Policy Statement

address

Management of Personal Information Policy (Privacy Policy)

DATA HANDLING AGREEMENT

LOCAL GOVERNMENT PENSION SCHEME. Memorandum of Understanding regarding Compliance with Data Protection Law. Introduction

GDPR & The Ad Agency: Understanding the Impact of the GDPR on Agency Services Agreements

Re: Breach of Privacy Act by Australian financial institutions

DATA SUBJECT ACCESS REQUEST POLICY AND PROCEDURE

Revising policies and procedures under the new EU GDPR

Terms and Conditions for Languages, Arts and Culture Courses

LUXOFT GROUP DATA PROTECTION POLICY Approved DOCUMENT NUMBER PAGE 1 LUXOFT GROUP DATA PROTECTION POLICY

PRIVACY NOTICE Use of Information Data Controller and Data Processor

Personal Data. Protection Policy

A distinctive local company with national standards. Practical Credit Control & New [GDPR] Data Protection Regulations

General Data Protection Regulation. Asked Questions

PREPARING FOR THE EU GDPR IN RESEARCH SETTINGS

General Data Protection Regulation (GDPR)

Arena Prize Indemnity Policy. Wording Document

SDM Health Insurance Portability and Accountability Act (HIPAA) Terms and Conditions For Business Associates

COMPANY POLICY FOR HEALTH AND SAFETY

Aegon Asset Management Europe ICAV ( the Fund ) Data Protection Policy

The data protection fee

Information about Danica Pension s processing of personal data

DATA PROCESSING ADDENDUM

Building a Program to Manage the Vendor Management Lifecycle

Rigor, Inc. GDPR Data Processing Addendum

Making tax digital: Transforming the tax system through the better use of information

Transcription:

The General Data Protection Regulation (GDPR) Personal data in SOS International www.sos.eu

SOS International is ready for the new data protection regulation In May 2018, the General Data Protection Regulation (GDPR) comes into effect. The new regulation from the European Union increases the existing requirements in a number of areas. In addition to already implemented compliance, SOS International has initiated a dedicated programme with underlying projects to make sure we meet the new requirements. The project includes assessments of for example processes and routines, as the new regulation sets increased demands in relation to: IT design and IT systems Contracts Consent IT security Documentation

Personal data is important and we are obliged to protect it The right to respect for privacy Everyone has the right to respect for his or hers privacy, family life, home and correspondence The right to protection of data Everyone has the right to protection of personal data relating to him or her my body ask permission if you want to use my data I CONTROL my things my money tell me why and with what purpose you are using my data tell me to whom my data is exposed THIS IS WHY YOU HAVE TO my data tell me if you lose control of them

The general data protection regulation (GDPR) The EU GDPR will increase privacy for individuals and give regulatory authorities greater powers to take action against businesses that breach the laws The regulation also applies to non-eu companies that process personal data of individuals in the EU Enforcement date: 25 May 2018 Requirements Requirement Similar to existing rules Significant tightening New Principles Requirements in agreements Documentation requirements Individual's right to access and object to SOS' processing Consent IT-systems: Build-in privacy Information security Notifying authorities of personal data incidents Data Protection Officer (DPO)

Consequences of violating GDPR Organisations in non-compliance will face heavy fines: GDPR provides the possibility to issue considerable fines to companies in violation of the new legislation Fines for non-compliance will be applicable to both the data controller (the insurance company) and the data processor (the supplier) Which personal data do we process in SOS International? Insurance information Name of the insured Reporter of a claim/relatives Address/telephone number/email Insurance policy Purpose of travel Cause of insurance notification e.g. injury or illness and receipts from insured Assistance information Same data as Insurance information Travel information Medical information including but not limited to medical records, medical history, current state of health, current medical treatment, observations and examinations etc. What constitutes personal data? Any information related to a natural person or Data Subject that can be used to directly or indirectly identify the person e.g. name, photo, email address, medical info, IP address etc. http://www.eugdpr.org/gdpr-faqs.html

Compliance in SOS International In SOS International quality, information security and data protection comprise some of the most important parameters for the success of our business. Accreditations and certifications such as ISO 9001 (quality management), ISO 27001 (information security) and ISO 14001 (environmental management in the Technical Division) underline our proactive and continuous work with quality, the environment and information security. SOS International has been ISO-certified since 2013. Risks are examined, documented and evaluated on an ongoing basis via the quality system Total Quality Management (TQM). A Compliance Board with sub-boards prepares for and ensure fulfillment of existing and new regulation. Reporting and regular audits ensure continued high quality of all services. Customer contracts are adjusted to Solvency II requirements where required. Company Code of Conduct and Supplier Code of Conduct ensure compliance, observance of national standards and legal and contractual requirements are implemented and made available.

ISO 9001 ISO 14001 ISO 27001

SOS International is the leading assistance organisation in the Nordic region. From alarm centres in Denmark, Sweden, Norway and Finland, SOS International provides acute personal assistance all over the world on behalf of insurance companies. SOS International offers a wide range of solutions in the form of worldwide medical and travel assistance, health assistance and roadside assistance. SOS International is owned by a number of the largest insurance companies in the Nordic region and has a case volume that places SOS International as one of the largest assistance organisations in the world. www.sos.eu

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback