Multi-Company Groups (MCGs) live outside of all instances. Subject to local laws, MCG members are free to agree ownership of the data in this GCM. Users can opt out of an MCG, but their data stays in the MCG unless they delete their account. For more information on GCMs, click here. The RGPD expands existing data protection legislation and adds new requirements. Most of the RGPD requirements apply to those responsible for processing. It is the organization or party that decides the “purposes” and “means” of processing personal data. If you have someone from the European Union in your database – maybe they signed up for your email list, or they visited your website and you followed them that way – they have certain rights under the RGPD. We have computing centers all over the world, including the United States, the EU and Singapore. And we have certified Workplace Premium with Privacy Shield for these necessary data transfers outside the EU (as stated in the terms and conditions of the Enterprise Agreement and Privacy Shield Certification). Data security and protection are Workplace`s top concerns, as we mentioned in our workplace safety information and in the Max Schrems Trust Center (complainant) and explain: “Facebook says every user knows what they`re getting into – but even Facebook`s privacy expert can`t explain exactly what the company is doing with our data. This is particularly absurd.
Under the RGPD, in addition to consent, it is also possible to process data for “contract performance” (Article 6, paragraph 1, point b), of the RGPD). Facebook now claims to have entered into such an “advertising contract” with users who, according to Facebook, ordered “personalized advertisements” when they committed on May 25, 2018 on the new terms and conditions. Q: What tools do you offer Premium workplace companies as data managers to meet our RGPD obligations? Facebook and Workplace comply with all data protection laws that apply to us. If necessary, we adapt our existing practices to the RGPD. We also strive to help our Workplace Premium customers meet their obligations. The RGPD requires Workplace Premium customers to hire data operators who can provide an adequate level of security to meet the requirements of the new rules. The security of the personal data we process for our customers is of the utmost importance to us. We go through regular security audits and Workplace Premium is ISO 27001 certified. Workplace Premium customers act as data managers and appoint Facebook as a data processor as part of the workplace agreement.
In workplace Standard, Facebook is the owner responsible for the data and is responsible for processing the standard user`s data in the workplace. In this case, you are the leader who holds you responsible for the data that all the tools you use. Katharina Raabe-Stuppnig (plaintiff`s lawyer): “Facebook now says they don`t need consent for the use of the data because users ordered this advertisement. Advertising on Facebook must now be an important part of the “promise of service.” It`s like users joining Facebook just to see ads. We are not able to do DPIAs with common customers. However, we are happy to provide you with all the information you need to accurately complete your DPIAs. We have a lot of information about Workplace on our help pages here. This includes information on workplace safety and our enterprise agreement contains additional details about the data we process and our Privacy Shield certification. We have worked with our product, design and engineering teams to ensure that our products comply with the RGPD rules. It also means that our contractual obligations allow customers to prove their compliance. We will update our agreements to provide the obligations required by data processors