GDPR (General Data Protection Regulation) is an acquis that determines the regulations on data protection and privacy in the European Union and the European Economic Area. GDPR Mandate is an authority to protect data. It primarily aims to help individuals take control of their personal information and then to ensure that companies comply with these regulations.
GDPR Authorizations, Authorization Groups can be found on the page. Apart from the module authorizations of the authorization groups registered in the system, there is also a GDPR Authorization field.
For example; If you deselect the "Personal Data Confidential" box in the You can authorize employees at the following stages within the scope of the authorization group they are included in.
- Personal Data: It is used for information that does not need to be protected as "Personal Data-Confidential" due to the information it contains, but is not wanted to be known by people other than the person to whom it belongs and those who need to know.
- Personal Data-Confidential:Personal It is used for information that falls within the scope of special personal data within the framework of the Data Protection Law.
- Personal Data-Top Secret:It is used for information that, if disclosed, used, processed or shared without permission, may cause vital damage to our reputation and interests in terms of personal security or national security, may provide benefits for a foreign state and may have extraordinary consequences in terms of security.
- Financial. Data: Used for information that does not need to be protected as "Financial Data-Confidential" due to the information it contains, but is not wanted to be known by people other than those who need to know.
- Financial Data-Confidential: For information that, if disclosed without permission, may lead to unfair competition or provide an advantage to other companies providing services in the same field. used.
- Financial Data-Top Secret: Used for information that, if disclosed, used, processed or shared without permission or permission, could cause vital damage to our reputation and interests in terms of personal security or national security, provide benefits for a foreign state and have extraordinary consequences in terms of security.
- Process Information:In terms of the information it contains, "Process Information-Confidential It is used for information that does not need to be protected with the degree of "Confidential", but is not wanted to be known by people other than those who need to know.
- Process Information-Confidential: It is used for information that, if disclosed without permission, may lead to unfair competition or provide an advantage to other companies providing services in the same field.
- Process Information-Top Secret:Unauthorized and unauthorized disclosure, use, It is used for information that, if processed or shared, may cause vital harm to our reputation and interests in terms of personal security or national security, may provide benefits for a foreign state, and may have extraordinary consequences in terms of security.
For example; If you want to separate your individual members as private customers and want only certain people to view whether the member is a private customer or not, you can select the name of the additional information to be entered in the "Name" section on the Additional Information page, and the authorization group that you want the employees with GDPR Authorization to see in the "GDPR Authorization" field. Masking section ensures that additional information entered is also masked in the database. If this box is selected, the relevant definition will be displayed masked in the database.
When you go to the individual member details, users without financial data-confidential authorization will display additional information as follows;
