GDPR Compliance: Mission Accomplished
By: Sherman Kester, Technical Sales Engineer at Kount
The European Union’s General Data Protection Regulation (GDPR) will be officially enforced today – Friday, May 25, 2018. GDPR, unique in its reach and accompanying fines for non-compliance, has had organizations within the EU and those that support those countries trying to achieve GDPR compliance. Transparency and a customers’ right to decide if they want their personal data forgotten are at the heart of the regulation.
The regulation impacts organizations differently depending on where they sit in the data lifecycle. For instance, Kount performs real-time eCommerce Internet order evaluations for merchants based on personal data provided to Kount by merchants around the world.
Kount, considered a processor of data, already had an existing process in place for consumers to request that their personal data be removed from its network, which meets GDPR requirements. Kount’s clients are considered “data controllers” under GDPR and as a result they must get consent from their customers to send their customer data to Kount. The exact consent language they use is up to clients to decide.
Kount acknowledges its obligations under the GDPR and is committed to providing best in class fraud prevention services in compliance with the GDPR. Data protection and security are, and always have been, a top priority at Kount. In addition to its proprietary security technologies, Kount is a PCI Level 1 service provider and undergoes extensive auditing every year to ensure Kount’s technologies and processes are safe and secure.
Some of the specific steps Kount is taking to ensure compliance with the GDPR include the following:
- Working with merchants to update existing contracts
- Working with sub-processors to update existing contracts for third-party services
- When necessary, incorporating GDPR specific provisions in future contracts
- Upon request, carrying out data subject’s various rights provided by the GDPR
- Revising policies and procedures related to data collection and privacy
To learn more about Kount please visit www.kount.com. If you have any questions about Kount’s preparation for the GDPR, please reach out to your customer success manager.