The EU General Data Protection Regulation (GDPR), which was approved to replace the previous EU Data Protection Directive, took effect May 25, 2018. GDPR replaces the former EU privacy regime — which included separate data protection laws in each of the EU member states — with a single data protection law across the EU. GDPR expands the privacy rights granted to EU individuals, and it places many new obligations on organisations that market to, track or handle EU personal data, no matter where an organisation is located.

NEW STATESMAN MEDIA GROUP LIMITED welcomes GDPR as an important step forward in streamlining data protection requirements across the EU and as an opportunity for NEW STATESMAN MEDIA GROUP LIMITED to deepen our commitment to data protection.

What is NEW STATESMAN MEDIA GROUP LIMITED doing to comply with GDPR?

NEW STATESMAN MEDIA GROUP LIMITED has closely analysed the requirements of GDPR and is working to make enhancements to our products, contracts and documentation to help support NEW STATESMAN MEDIA GROUP LIMITED and our customers’ compliance with GDPR.

The following are some examples of actions NEW STATESMAN MEDIA GROUP LIMITED is taking to comply with GDPR:

  1. Reviewing our data processing activities to determine which data processing activities and systems are subject to GDPR.
  2. Conducting an assessment of our current activities and privacy program against GDPR and mapping our data processing activities.
  3. Reviewing and updating existing and new third-party service provider agreements to include GDPR-compliant data processing terms.
  4. Identifying and conducting any necessary data protection impact assessments (DPIAs) on data processing activities.
  5. Implementing and updating policies and procedures to address privacy-by-design principles. As part of this, we are assessing data processing activities and related risks, and implementing practices and safeguards to mitigate such risks.
  6. Updating our incident response program to address GDPR’s breach notification standard and requirements.
  7. Amending and developing internal processes to address and accommodate expanded individual rights requests.
  8. Adopting new tools to manage, document and renew GDPR compliance requirements.

Any other questions?

Please feel free to email the NEW STATESMAN MEDIA GROUP LIMITED privacy team at data.protection@ns-mediagroup.com.