GDPR Europe’s new data protection rules. Europe’s new General Data Protection Regulation (GDPR) replaces the 1995 EU Data Protection Directive. It ushers in a new era, unifying data protection rules across Europe, strengthening the rights of EU citizens and placing new obligations on all organisations that offer goods and services online.
XXX Sex Contacts is committed to complying with the GDPR across all aspects of the service we provide to UK adults. This includes any information we (or our partners) may collect, as well as any services we may launch in the future.
We’ve always worked hard to demonstrate that our services are secure and meet the standards of applicable data protection rules. We offer transparency to users through clear explanations of how we use any personal data we collect while advising service users not to reveal any personal or contact information which might identify them to another user of our service.
The GDPR refers to sensitive personal data (under the DPA 1998) as “special categories of personal data” (under Article 9 of the GDPR).
GDPR Europe’s new data protection rules
Here at XXX Sex Contacts, we are keenly aware that we and our partners have significant obligations under these new laws, and so we conduct regular checks into what we do, what provisions we have in place to provide protection to our service users and ensure full compliance with all applicable rules and regulations. As the GDPR comes into force we will continue on that path, and have posted this blog for service users (and others) to confirm that:
- user message logs are managed in accordance with our Message Log Management Policy (“MLMP”) which sets out clear principles relating to the management, control, and sharing of sensitive personal information, including any data we may be asked to share – the MLMP takes account of the data protection act, UK and European privacy laws, our regulatory responsibilities and matters of confidentiality, as well as how we handle subject access requests (“SAR”);
- no personal information or sensitive personal information is held on our servers;
- we are committed to complying with all applicable data protection laws; and
- we will not disclose any sensitive personal information we (or our partners) hold about a service user’s service interactions, without first being satisfied that we have the explicit (and informed) consent of the service user (data subject) to do so.
We will continue to evolve our privacy protection practices to comply with the GDPR’s requirements.
Our aim is always to keep data private and safe, and to keep our service users in control of their own data at all times.
External link ICO