General Data Protection Regulation (GDPR)

Compliance

bibliotheca is committed to high standards of information security, privacy and transparency. We place a high priority on protecting and managing data in accordance with accepted standards – we’ve always complied with regulations and will continue to do so. Our business leaders and key executives are fully aware of the significance and impact of GDPR on our business, as well as our customers’ businesses.

We have fully assessed the GDPR requirements and have put in place a dedicated internal project team to ensure we meet those new requirements. bibliotheca has also partnered with leading experts in GDPR and Cyber Security to assist us in this process.

We are undertaking risk assessments to include more detailed consideration of the data types we hold and a data protection impact analysis of the personal information we store and process. Additionally, we are reviewing and updating policies such as incident response plans and backup data retention.

Some of our additional initiatives are:

• Reviewing contracts with our third party service providers and amending where necessary
• Employee awareness training
• Creating a culture of privacy by design and working to identify risks and establish processes for Data Protection Impact Assessments for high-risk processing operations

bibliotheca as a company is committed to providing secure products and services by implementing and adhering to prescribed compliance policies, both as a data controller and processor. The upcoming GDPR is critical to our mission of providing EU and all our global customers with safe and dependable business products and services.