In addition to the longer existing Personal Data Protection Act (Wbp), the obligation to report data
breaches has been in force since January 2016. Another change took place in May 2018, as a result of which the rules regarding personal data have become even stricter. That is when the General Data Protection Regulation (GDPR) was introduced. The introduction of this new law has quite a few consequences.
By using our package you are one step further to comply with this new legislation. When using our solution, you immediately receive a processing agreement.
How do I conclude a processing agreement with Markxman according to the AVG / GDPR?
The GDPR (General Data Protection Regulation) is a new European law for the protection of personal data. In English, this regulation is called GDPR (General Data Protection Regulation). To comply with Article 28 of this regulation, you enter into a processing agreement with Markxman. This is mandatory if you process personal data with our products.
This processing agreement already exists under the Personal Data Protection Act (and is called ‘processor agreement’). The new processing agreement contains a number of extra clauses that oblige us to comply with the GDPR when processing your data. If the government checks you for compliance with the AVG / GDPR, you can demonstrate this with this agreement.
According to which ISO certifications does Markxman work?
For some time now, Markxman has been working with partners in the data center according to ISO 27001 certification. This is the best-known international standard for IT security management. ISO 27001 defines the requirements that IT security must meet. To meet this standard, it must be demonstrated that we have taken adequate and appropriate security measures to protect the data. Stakeholders must also be able to rely on these measures. ISO 27001 is a strict standard that applies to the development and offering of internet products and services and the associated data centers. For example, a systematic security concept and numerous security measures must be present in the IT infrastructure, in the secondary technology and in the process chain. The safety concept is based on clear and strict standards and is regularly reviewed. Our security measures include data mirroring, encryption and regular analysis of new security requirements. Which are continuously kept current and up to date via the PDCA procedure.
How secure is the data center and where is the data located?
We can only provide you with limited detailed information about our data centers. The security of your data is a very high priority for us. That is why we do not mention specific information about our security measures. After all, such public information would compromise security. An example: if we disclose how the access works and what obstacles must be overcome (logging, detection, alarms, codes, registration, times, etc.), we make it very easy for a potential hacker.
But we can mention this information about the security of your data:
- Our back-end technology is redundant. Most systems are therefore available to guarantee maximum availability of the services.
- Data processing only takes place in our data center. This is a big plus: Markxman falls fully under the strict Dutch privacy legislation.
How does Markxman guarantee that the processed data is protected?
Security and data protection are extremely important to us. Markxman’s data security is in accordance with the ISO 27001 standard. Various security mechanisms protect the data against unauthorized access. They are located in a data pool that is logically separated from the data of our other customers (including via zones and login demarcation).