The Data Protection Regulation is generally abbreviated to GDPR, which is short for General Data Protection Regulation. The Data Protection Regulation entered into force on 25 May 2018 and has replaced the then Danish Personal Data Protection Act.
Category I applies to relatively simple or clerical violations. Failing to share the contact details of the company’s Data Protection Officer (DPO) or to adequately record the responsibilities of processors or joint controllers both qualify as Category I violations.
Category II refers to when a company does not fulfill specific GDPR requirements regarding data processing. Examples of these violations include when a company does not conclude a data processing agreement with their processor, respect the DPO’s independence, conduct an impact assessment, or adequately secure their users’ personal data.
Category III violations refer to a company’s refusal to be transparent, such as failing to notify users and the Dutch data protection agency of breaches or refusing to cooperate with the Dutch DPA.
Category IV violations are the most severe. They apply to the unlawful processing of special categories of data (such as the national identification number), illegal profiling, or refusing to comply with specific directives from the Dutch DPA.
On 25 May 2018, Denmark and the rest of the EU were given a new common regulation which regulates how companies should process personal data. A novelty of this data protection regulation is the criminal penalties a company can be sentenced to if it violates the rules.
This has led many companies to consider how they handle and protect personal data.
Million fines if you don't care
A novelty of the Data Protection Regulation is that the Danish Data Protection Agency may decide that a company that does not comply with the regulations of the Regulation must pay an administrative penalty, which is a form of fine. The penalty can be up to €20 million, or four percent of the company's global annual revenue.
But is the fine alone the company should be nervous about?
No - we don't think so. We are happy to explain to you what we think you as a business owner should be nervous about.
If you're unsure how your business will be affected, let's meet. A piece of advice doesn't cost anything.