ABa welcomes the introduction of the EU General Data Protection Regulation (GDPR), which came into force 25 May 2018. This is the most significant piece of European privacy legislation in the last twenty years. It replaces the 1995 EU Data Protection Directive (European Directive 95/46/EC), strengthening the rights that EU individuals have over their data, and creating a uniform data protection law across Europe.
How does ABa comply with the GDPR?
ABa has always maintained compliance to all Data Protection legislation and our GDPR preparation started in 2017 - reviewing (and updating where necessary) all our internal processes, procedures and documentation to ensure that we were ready when GDPR came into force.
Our GDPR Principles are:
Data is processed fairly and lawfully
Data is processed only for specified and lawful purposes
Processed data is adequate, relevant and not excessive
Processed data is accurate and, where necessary, kept up to date
Data is not kept longer than necessary
Data is processed in accordance with an individual’s consent and rights
Data is kept secure
Data is not transferred to countries outside of the European Economic Area (‘EEA’) without adequate protection
ABa Quality Monitoring Limited is also certified to ISO 27001, ISO 9001, ISO 22301 and ISO 14001, which are externally audited annually. ABa also undergoes annual cyber security testing of our company’s virtual and physical security measures. This ensures we adhere to stringent processes for keeping our data and our customers’ data secure.