Prop Tech and GDPR
You don’t know the half of it.
You might think much of the information flowing through your Prop Tech solutions –video, CCTV still images, virtual reality – wouldn’t count as processing personally identifiable data and couldn’t cause any GDPR liability on your part.
You’d be wrong.
- “But we’re not storing or transmitting anything!” It doesn’t matter. A sensor (a camera, for example) can still record images of a person, time and location information, perhaps even visual evidence of any disabilities a person might have. This all counts as processing personal data – even if it’s fleeting and not being sent beyond the camera or stored anywhere!
- “But we’re just the Prop Tech firm – our client is the Data Processor!” Not necessarily. Because of the level of control Prop Tech firms exercise over the data, the Prop Tech firm and the client often become joint Data Controllers – and so share liability.
- But nobody else comes into contact with the data apart from us! Really? So in an error-handling or repair scenario a third-party technician would not be able to log in to view and test the camera feed?
You see the issues here.
The question is, how long before your clients, partners and investors spot them too?
How Firesand can help you?
- Dedicated, Prop Tech-focused security solutions for small, medium and large organisations
- Managed and outsourced services - No security expertise or IT resource needed on your part
- Extensive security experience – Decades of security industry expertise with many high-profile global brands
- Unrivalled security and data privacy qualifications, including SABSA, CCISO, CISSP, CIPP/E, and FIP (the latter one of only a handful in the UK
Don’t let complacency kill your compliance – and your business. Ask about our GDPR solutions for the Prop Tech sector today.