GDPR guide
This guide is intended for existing or potential users of Apteco software. It outlines the mechanisms within Apteco software that support GDPR compliance, with suggested best practice guidelines.
Note
The aim of this guide is to help you understand the tenets of GDPR and how to be prepared. The examples and concepts shown are to help you research GDPR and Apteco software and should not be taken as legal advice. If you have questions, reach out to a specialist in GDPR regulation.
- Data flow—understanding and documenting how personal data moves through your organisation
- Common GDPR terms—definitions for data subjects, personal data, consent, controller, processor, and rights
- Apteco architecture overview—which Apteco databases hold personal data and how it flows
- Privacy by design and by default—pseudonymisation, differential privacy, data minimisation, audit trails, and permission preferences
- Supporting GDPR in your system—the GDPR Administration Tool, SQL scripts, and supporting data subject rights to access, erasure, and portability
- Afterword—disclaimer and guidance on seeking legal counsel
- Appendix A: GDPR SQL scripts—reference for Cascade, Facebook, PeopleStage, and Twitter anonymise/remove scripts
- Appendix B: Relevant GDPR articles—summary of key GDPR articles on data subject rights and data protection