In order to fulfill the demands of this EU-regulation the system contains comprehensive functionality to handle all situations that can arise.
Before starting using this function the Administrator must
•Decide what system fields contain personal data
•Decide what levels to demand agreement approval from EndUser
o System – level, On log in (mandatory)
o Form – level, when dialog is shown
o Field –level, when field is clicked for data entry
•Input all the GDPR agreement texts for all chosen levels.
•Input text for user that defines how to handle GDPR matters
You can let the EndUsers from the SSP send request to…
•Delete personal data from closed tickets.
•Correct erroneous data
•Be “forgotten” as user (the data is erased and the account is anonymized.
•Encrypt data using either a key generated by system or by EndUser inputted own key.
•View their personal data and create reports
The Agent Portal contains….
•an interface that lets Agent approve or reject the requests from the EndUsers.
•a list of objects in the system that contains personal data and what this data is.
•A list of agreements that users have approved (all levels)
•Possibility for the Agent to manually preform all same GDPR operations that the EndUser can request on SSP (except encryption and data correction).
As system owner you must yourself provide all the GDPR agreement texts for all levels (depending on setting.