GDPR Compliance

The GDPR (General Data Protection Regulation) is an important piece of EU legislation that takes effect on the 25th May 2018. The GDPR replaces the 1998 Data Protection Act and is designed to strengthen and unify data protection laws for all individuals within the EU.

At Mr Memory we are committed to protecting your privacy and to achieving GDPR compliance before the regulation becomes effective.

The Mr Memory website and our Privacy & Cookies Policy have been updated to meet the new regulations. We are also making improvements to our internal systems and updating contractual agreements with our service providers.

If you have any questions about our privacy policy or the way we use your personal information please contact our Privacy Officer.

If you would like to know more about the GDPR we have summarised the important bits below and you can find all the specifics on the Information Commissioner's Office website.

GDPR Summary

  • More control for individuals

    The GDPR provides expanded rights for individuals in the EU by granting them the right to be forgotten and to request a copy of their personal data.

  • Transparency and privacy notices

    Organisations must be clear and transparent about how personal data is going to be processed, by whom and why.

  • Obtaining valid consent

    There are stricter rules for obtaining consent which means among other things, that pre-ticked boxes and inactivity will no longer suffice as consent.

  • Lawful processing

    You must identify and document the lawful basis for any processing of personal data.

  • Compliance obligations

    The GDPR requires organisations to implement appropriate policies and security protocols, conduct privacy impact assessments, keep detailed records on data activities and enter into written agreements with vendors.

  • Data transfers outside the EU

    The transfer of personal data outside the EU is only allowed to designated countries, those complying with an approved certification mechanism (e.g. Privacy Shield) or through model contracts or binding corporate rules.

  • Data breach notification & security

    The GDPR requires organisations to report certain data breaches to data protection authorities, and under certain circumstances, to the affected data subjects. The GDPR also places additional security requirements on organisations.

  • Data protection officer (DPO)

    The appointment of a DPO is mandatory for some organisations.

  • Data protection by design and by default

    There is a requirement to build effective data protection practices and safeguards from the very beginning of all processing.

  • Increased Enforcement

    Under the GDPR, authorities can fine organisations up to the greater of €20 million or 4% of a company's annual global revenue, based on the seriousness of the breach and damages incurred.

5 Stars
9.8 out of 10
 Our customers love us! 
33,455 reviews
# 1   in 2 Categories

SSD delivery upgraded at no cost to…

SSD delivery upgraded at no cost to next day. Arrived as described, installed with no issues and working perfectly. It has given my PC a whole new lease of life!
Jeremy - 19 Apr 2018 Verified Order READ MORE REVIEWS

Sign up for exclusive offers and news

YouTube Trustpilot

Americanino Limited T/A Mr Memory
D3 Yeoman Gate, Yeoman Way
Worthing, West Sussex
BN13 3QZ

GDPR Ready

Registered in England & Wales - Company Registration No: 02012072. VAT No: GB 641 1660 65

The trademark 'Mr Memory' is the exclusive property of Americanino Limited and is protected by UK Trademark Registration No: 2616298.

We accept PayPal VisaMastercardMaestroAmerican Express Norton Secured - powered by VeriSign Learn more about Verified by VISA Learn more about MasterCard SecureCode

© 1994 - 2018 Mr Memory. All rights reserved. Designed and maintained by Mr Memory for 24 years.