Register

Get In Touch With Us

GDPR

 General Data Protection Regulation

The General Data Protection Regulation (GDPR) is a comprehensive data protection law in the European Union (EU) that went into effect on May 25, 2018. It replaces the 1995 Data Protection Directive and aims to strengthen data protection for individuals within the EU.

GDPR applies to:

  1. Personal data – Any information relating to an identifiable individual (e.g., name, email, IP address).
  2. Data controllers – Organizations that collect and process personal data.
  3. Data processors –  Organizations that process personal data on behalf of data controllers.

GDPR’s impact extends beyond the EU, as organizations worldwide.

Learnready GDPR checklist

  1. Clear Privacy Policy – Explain how you collect, use, and protect users’ personal data, including name, email, and test results.
  2. Consent for Processing – Obtain explicit consent from users to process their data for test preparation and improvement.
  3. Data Minimization – Only collect necessary data for test preparation and improvement.
  4. Data Protection by Design  –  Implement data protection measures during website development.
  5. Secure Test Results Storage – Store test results securely, using encryption and access controls.
  6. Data Subject Rights –  Allow users to access, rectify, erase, and restrict processing of their data.
  7. Data Breach Notification –  Establish a data breach notification process.
  8. Cookie Policy –  Explain cookie usage and obtain consent.
  9. Data Sharing  – Ensure data sharing agreements with partners or third-party services comply with GDPR.
  10. International Data Transfers – Ensure adequate safeguards for international data transfers (if applicable).
  11. Data Retention – Establish data retention policies and procedures.
  12. Security Measures – Implement appropriate security measures to protect personal data.
  13. Training and Awareness –  Provide GDPR training for staff. ( If applicable )
  14. Compliance Monitoring – Regularly monitor GDPR compliance.

Additionally.

  •  Anonymize Test Results Anonymize test results to protect user privacy.
  • Secure User Accounts – Ensure secure user account creation and authentication processes.
  • Data Accuracy – Ensure accuracy of test materials and user data.