The abbreviation GDPR stands for General Data Protection Regulation and refers to the data protection for all individuals within the European Union. This new law applies to all companies that store and process data from users located in the EU. It has been valid from May 25th of 2018.
The law has the purpose of setting parameters to guarantee the safety of user's data and increase the rights of personal privacy in all electronic matters. It is important to know about the regulations given worldwide about data management both for those who control or process the information.
Not being GDPR compliant may cause fines up to 20 million EUR or 4% of the company’s annual profit.
As an LMS user, you're learning activities could be impacted if any of your students, users, employees or customers are located in the EU. For that reason, all the data that is stored within the LMS needs to be compliant with this regulation.
In order to guarantee GDPR compliance, companies must not only focus on the technological part, but also on data knowledge and business activities information handling. Paradiso Learning Management System complies with the essential requirements that GDPR asks for, such as:
We can refer to this document in order to determine and explain where we have our servers: https://aws.amazon.com/about-aws/global-infrastructure/; for any specific instance, please contact our Engineering team, and they will indicate where a specific instance is.
We use a variety of services like EBS, S3 and EFS, every service is used depending on the client’s specific use case. All our client’s data is stored in secure and encrypted storage services.