The GDPR (General Data Protection Regulation) came into force on 25 May 2018, replacing the 28 current national data protection laws based on the 1995 Data Protection Directive (DPD). All the organizations that are registered in EU or have an establishment or subsidiary in EU and process or monitor the personal data of EU residents must comply with the new data protection regulation.
This situation directly affects not only the UIPM but all its Member Federations. This important matter has been an object of internal discussion and large work preparations within the UIPM for the implementation of the appropriate measures since 2018. The compliance to the GDPR requires a big effort of several stakeholders and UIPM is totally committed to that.
The UIPM reminds all Member Federations that the deadline to regularize their GDPR situation in the UIPM Portal is April 30th, 2020.
Concerning its employees and consultants, the UIPM reaffirms its compliance with the GDPR. A privacy notice has been distributed and signed by each staff. The document was focused on informing about the categories of personal data processed and clarifying the reasons for processing their data, the lawful basis to process these, how long the data are kept for and their rights regarding their data.