In the past few days, there has been a lot of news and articles written about the new GDPR rules implemented by the European Commission as a step to improvise the security for digital data. The GDPR rule changes the way in which data is captured, stored, and shared. The new rules have had a major impact on a device with data storage equipment. One among such equipment is surveillance systems.
According to IVPM, the world’s best reporter on video surveillance systems, the GDPR rules implemented by the EU will have a great impact on the businesses that have employed CCTV cameras. The General Data Protection Regulation insists on providing privacy to the employees while working unless the employers have a strong valid reason to install CCTV cameras.
Impact on Businesses
The GDPR rules made by the European Commission allow businesses to install CCTV cameras only at the places where the employee’s privacy is disturbed. The new rules do not consider monitoring of employees’ conduct as a valid reason to install a security system. According to them, security cameras can be installed only for the purpose of security of the employees and resources.
Limit on Capturing and Data Processing
The new GDPR rules also consider monitoring public for a long time or on a large-scale as a risky task. The rules state that capturing the video of any person is equal to collecting the personal data of the person. This is not valid according to the new laws. The laws forbid implementation of surveillance systems in places like canteens and lobby area.
The rules expect the data handling processes to be transparent. The subject in the data needs to be informed about the amount of information recorded by the cameras and the amount of privacy affected in the process needs to be in limit.
Limit on Retaining Period of the Footage
The GDPR lays regulations on the retention period of the footage as well. According to the rules, one cannot retain the CCTV footage for a longer period. There is a limit set for CCTV data storage period based on the camera and its purpose.
Encryption and Confidentiality
The GDPR rules implemented by the European Commission require all the surveillance systems to employ encryption to avoid security breaches. The rule makes it compulsory for people and organizations to maintain the confidentiality of the footage. For example, if somebody demands to see the footage, the rules require the person to be present in the footage to have the right to see the footage. Otherwise, only government bodies and the police have the right to view the footage.