The General Data Protection Regulation, which will apply from May 25th 2018, creates consistent data protection rules across Europe. It applies to EU-based companies and global companies that handle personal data of individuals living in the EU.
While many of the principles were built on existing EU data protection rules, the GDPR has a wider scope and substantial fines. For example, it requires a higher standard of consent for using some types of data, and broadens individuals' rights when it comes to accessing and moving their data.
Facebook's Commitment & Preparation
Facebook GDPR preparations are supported by the largest cross-functional team in Facebook's history; Facebook is expanding their Dublin-led data protection team which is leading these efforts. Throughout the process, they remain committed to the following:
Transparency
Facebook’s Data Policy will remain the single consolidated place that maps how Facebook processes personal data. New and existing users will also be provided with education through consent experiences, in-product notifications, and consumer education campaigns.
Control
Facebook will continue to provide individuals with control over how their data is used. To build on this, Facebook is simplifying the design of their privacy settings in a new privacy centre. Refreshers will be provided for Facebook users as well – for example, reminders might pop up in News Feed about how to double-check settings.
Accountability
Facebook acknowledges that they are accountable for their practices, and has Privacy Principles that explain how they think about privacy and personal data protection. The team meets frequently with regulators, policymakers, privacy experts, and academics from across the world in order to get feedback and adapt to changes as needed.
Businesses who advertise with Facebook can continue to use Facebook platforms and solutions as before—each business is responsible for ensuring their own compliance with the GDPR.
To read more information and see FAQs please follow this link.