So What Does This Mean for Businesses?
The degree of change in services and applications will vary wildly from business to business. Businesses most impacted by GDPR are B2C (business-to-consumer) operations. So think your residential ISP, social networks, Netflix, Amazon, Youtube, etc. - businesses that sell or reach directly to you, the consumer, and not to other companies. B2B (business-to-business) companies, which are generally service providers (of which NocTel is!) are less impacted due to the basis of handling personal data being to provide services and manageability. In B2B relationships, the company receiving services from another is generally responsible for obtaining consent from affected staff to use relevant personal data the service may need since the subscribed services are used for the purpose of business. This places such services under the purview of things such as company Acceptable and Fair Use policies. Personal data tied to staff are also generally limited to data that associates the individual to the organization for the purpose of business.
While GDPR is scoped at EU residents, the ubiquity of digital services on a global scale has made it easier than ever to have just as many foreign customers as domestic. This means the safest bet for most companies is to implement GDPR compliance for all customers regardless of if they are EU residents or not. Unfortunately, with most laws there is always contention over what correct interpretation looks like. With GDPR, the world is left guessing as to how thoroughly and accurately any given company has implemented compliance until an initial series of incidents helps form a notion of precedence of interpretation. The upside is as end users of many services we can expect better handling, control, and transparency over personal data - even if we aren't EU residents.
You can read up on how NocTel handles personal data in the following section and access related relevant resources.