Skip to content

GDPR – General Data Protection Regulation

Susanna Townsend | May 14, 2018

GDPR – General Data Protection Regulation

In this modern age, it is impossible to avoid the digital world. Digital touches almost every aspect of our lives, and our dependence on digital tools naturally results in the creation of vast amounts of personal data, none of which we want to be shared carelessly. On the other hand, personal data is a multibillion dollar industry, and businesses like social media platforms collect and sell data as a main aspect of their business model.

This conflict of interest creates lots of problems, and it is the job of the governments to develop and enforce legislation that protects individuals’ rights to their data and their privacy.

What is GDPR?

Since 1995, the European Union has governed these issues with the ‘Data Protection Directive.’ However, as a result of the changes in the digital landscape, the European Commission ordered that the General Data Protection Regulation (GDPR) will replace the Data Protection Directive on the 25th of May, 2018.

If you’re wondering what exactly the GDPR will do, here is its official definition:

“This Regulation lays down rules relating to the protection of natural persons with regard to the processing of personal data and rules relating to the free movement of personal data.” (GDPR, Chapter 1, Article 1)

While the Data Protection Directive was open for interpretation by EU countries, the GDPR is a universal piece of legislation which will be implemented verbatim across all member nations. The GDPR will now act as the central legislation for dealing with data-related issues in all European countries.

It is worth mentioning that, as per the GDPR’s text, the primary objective of this regulation is “to protect fundamental rights and freedoms of natural persons and in particular their right to the protection of personal data” (GDPR, Chapter 1, Article 1).

Here is a link to the complete document containing the General Data Protection Regulation. On this page, you can view the regulation’s text in HTML and PDF formats, and in several languages.

Important Definitions

It is important to take a look at the basic definitions given in Chapter 1, Article 4, which serve as the building blocks for GDPR.

Personal Data – While the Data Protection Directive was being interpreted differently by all the member countries, GDPR has laid down a uniform definition for this very important term. Personal data is defined as “any information relating to an identified or identifiable natural person”.

Processing – means “any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction”.

Controller – means “the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data”.

Processor – means “a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller”.

The major difference between a Controller and Processor is that the former is someone who decides how and why the data will be processed, whereas a Processor is someone who processes the data on behalf of the Controller.

The GDPR has mentioned distinct responsibilities for both types of data handlers.

digiDen’s Personal Data Management

digiDen is very firm when it comes to the protection of its clients’ data. We take all possible measures to ensure that your data stays in safe hands. We only store data that is absolutely necessary for the project and to meet regulatory requirements. Moreover, we never store data unnecessarily.

Another aspect of data protection/privacy that we are very particular about is sharing your data with other parties for marketing purposes. digiDen has zero tolerance for such practices, and we never share your data with any other business or individual under any circumstances.

To keep our data storage system transparent, we have meticulously crafted our Privacy and Cookie policies. Here are the links for your information:

Upon your request, we can even share information on where and how your data is stored in each case, and for what purpose(s)

digiDen has made preparations to become compliant with the General Data Protection Regulation (GDPR) as soon as it comes into effect. As a digiDen’s client, you should always remain assured that your personal data is safe and treated with complete confidentiality at all times.

If we haven’t heard from you by 25 May 2018 we must delete your data from our marketing platform.  Please note, data will continue to be stored in our accounting and project management systems for at least six years.

We will never pass your data onto a 3rd party.



digiDen Creative Media


Combining artistic flair with technical know-how, we create stunning designs that stand out from the crowd giving a lasting impression of your business.



Don't want your website to go down the tubes?

Look after your investment with website care and maintenance...

susanna townsend


A gifted digital designer as well as the founder of digiDen Creative Media. Susanna is a creative who enjoys taking her clients’ brands to the next level with her strong aesthetics and tech-savviness. Since 2005, an ever-growing list of diverse businesses has come to rely on her digital visual solutions to achieve their business results. Susanna has a strong passion for visual design, imagery, technology, her animals, and the beach!

Ready to get started with your project?

Need Help? Chat with us