As you may know, the General Data Protection Regulation (GDPR) came into effect on 25 May 2018, with the aim of significantly strengthening the protection of citizens' personal data. With version 2018.2.0.1, released on 18 May 2018, Flexi introduced a new module to support GDPR compliance.
Overview of changes:
In each agenda, you can now view the purposes associated with a specific record. This allows you to see which purposes entitle you to retain the data (the Purposes button).
In every GDPR-enabled agenda, you can now display records for which no processing consent exists (the Check GDPR function).
We have pre-marked system fields that inherently contain personal data. In addition, you can extend this definition as needed — see the Purpose Definitions agenda.
The Purposes agenda provides a quick overview of all purposes across the system. It allows you to locate expired purposes and take the necessary action (deletion, anonymization, extension, etc.).
The Request Log agenda serves as an evidence record. It logs individual requests arising from data subject rights (correction, deletion, restriction of processing, etc.).
GDPR Module:
First and foremost, to enable this module, you must activate the "GDPR Processing" option in your company settings (Company → Settings → Automatic Operations → GDPR). This module is also accessible via the REST API.
Once activated, the GDPR section will appear in the main application menu with three modules:
Purposes
Request Log
Purpose Definitions
Articles about the individual GDPR module sections can be found at the links below:
1) Purposes
2) Purpose Definitions
3) Requests