{"id":15083,"date":"2018-04-04T21:06:42","date_gmt":"2018-04-05T01:06:42","guid":{"rendered":"https:\/\/www.sherweb.com\/blog\/?p=15083"},"modified":"2019-08-14T16:06:51","modified_gmt":"2019-08-14T20:06:51","slug":"gdpr-microsoft-dynamics-365","status":"publish","type":"post","link":"https:\/\/www.sherweb.com\/blog\/microsoft-ecosystem\/dynamics-365\/gdpr-microsoft-dynamics-365\/","title":{"rendered":"General Data Protection Regulation (GDPR) and Microsoft Dynamics 365"},"content":{"rendered":"

The General Data Protection Regulation (GDPR)<\/a> was designed by the European Parliament and Council to replace the Data Directive 95\/46\/ec in May of 2018. As a result, the GDPR will be the main regulation guiding how organizations handle and protect the personal data of EU citizens.<\/p>\n

Based on the GDPR, any company who handles the personal data of an EU citizen will be affected and must comply. While there are many companies already in compliance with the Data Protection Directive, they must now ensure they will be compliant with GDPR before May 25, 2018.<\/p>\n

 <\/p>\n

Click here to download our free ebook on Dynamics 365 and get answers to your questions!<\/a><\/h3>\n

 <\/p>\n

So, the GDPR does not only apply to every member state in the EU, but also to any company who does business in the EU and with EU citizens. On the one hand, there will be changes to make in the way data is handled\u2014that can cost more resources than some companies want to expend.<\/p>\n

On the other hand, dealing with one major regulation helps to ease the confusion of dealing with differing local privacy laws of each EU nation. How does this affect Microsoft Dynamics 365 <\/a>and you? Keep reading to learn more.<\/p>\n

<\/h2>\n

 <\/p>\n

What you need to know about the GDPR’s requirements <\/strong><\/h2>\n

Within the GDPR, there are 11 chapters and 91 articles. It will take a detailed reading to fully understand how to comply with all the requirements. For starters, it mandates that companies must implement the appropriate data protection measures to protect personal data against breaches\u2014this is of utmost importance, especially when dealing with the personal data of EU citizens.<\/p>\n

It goes even further. If you take a look at Articles 31 and 32, they require notification of a data breach within 72 hours. Also, a detailed explanation of the breach must be given to GDPR regulators.<\/p>\n

Furthermore, Article 35 states that some companies\u2014especially larger companies\u2014must employ data protection officers when they are dealing with personal data regarding religious beliefs, health, genetic data and ethnic origin. The data protection officers will act as a point of contact between the organization and GDPR’s Supervising Authorities (SAs).<\/p>\n

Regarding penalties, Article 79 conveys that the penalty for GDPR non-compliance can be up to four percent of the company’s global annual revenue, or $20 million<\/a>. \u00a0As you can see, the key changes revolve around:<\/p>\n