To process data lawfully, one of the six legal bases listed in Article 6 of the GDPR needs to apply:
The person has given consent to the processing of their personal data for one or more specific purposes.
Processing their data is a necessary part of a contract with a business, which the data subject knows about and agrees to.
Processing their data is necessary for compliance with a business’ legal obligations.
Processing their data is necessary in order to protect their, or another person’s, vital interests.
Processing their data is necessary for a task carried out in the public interest or for an official authority.
Processing their data is necessary for the interests of the business or a third party, unless these interests are overridden by the interests or fundamental rights and freedoms of the data subject, or the data subject is a child.
PORT makes following and documenting Article 6 easy, producing an audit trail which shows the legal bases and consent given for processing each customer’s data.
With PORT, your business can prove all data is processed lawfully to the regulator, and maintain customer trust too.
Find out more about lawful processing under GDPR with PORT.im’s CEO, Julian Saunders. This webinar will guide you through 4 easy steps any business can take right now to get compliant.