Join   |   Contact Us   |   Print Page   |   Sign In
News & Press: JPMA News

GDPR and JPMA's Response

Monday, April 30, 2018   (0 Comments)

On May 25, 2018, the General Data Protection Regulation ("GDPR") will become effective in the European Economic Area ("EEA"). This new regulation builds on the strong data privacy regulatory regime in place in the EEA since 1995. The GDPR provides important new and strengthened protections for those residing in the EEA and whose data may be collected, moved, stored and processed from and to anywhere in the world.

As an association with members based throughout the world, JPMA is committed to enhancing our privacy safeguards as necessary to comply with the GDPR as well as the myriad of laws related to protecting this important individual right throughout the world.

JPMA currently complies with applicable data protection regulations and is committed to GDPR compliance across its relevant services when the GDPR takes effect May 25, 2018. JPMA has a dedicated internal team made up of cross-functional stakeholders overseeing JPMA's GDPR readiness. JPMA's ongoing compliance efforts include:

  1. JPMA is making our employees aware of the GDPR and the implications of the law. This is an ongoing effort and will continue beyond the law's initial implementation.
  2. JPMA is performing assessment processes and data mapping activities. We are documenting what data we have, where it came from, and with whom we share it.
  3. JPMA is updating our privacy policies and notices to reflect changes based on the GDPR.
  4. JPMA will establish procedures to delete individual user's data, if requested, and also outline processes to share an individual's data electronically if requested.
  5. JPMA has updated its consent to ensure they meet GDPR standard, including the introduction of opt-in requirements and the use of clear language to explain the use of provided information.
  6. JPMA has created a Data Breach policy that outlines the organization's response to a data breach.
  7. JPMA will implement a "Privacy by Design" framework in developing programs and systems to support our work.
  8. JPMA has evaluated our need for a Data Protection Officer, but at this time we do not meet the requirements that would require JPMA to name a Data Protection Officer.
  9. JPMA is working to determine our lead data supervisory authority under GDP law, but has not yet determined this item.

Association Management Software Powered by YourMembership  ::  Legal