Overview of the GDPR

The General Data Protection Regulation (GDPR) introduces a new privacy era that strengthens the rights of individuals. This regulation defines the obligations of organizations that collect, store, and process personal data belonging to European Union (EU) residents.

OSSI welcomes the progress brought forth by the GDPR. We are committed to helping our users understand the implications and requirements of using OneSource in a GDPR compliant manner.
The GDPR is the European Union’s new data protection law that unifies the different privacy legislation across EU member states. The purpose of the regulation is to strengthen the privacy rights of individuals in regard to how their personal data is being collected, processed, and used.

The GDPR replaces the current EU Data Protection Directive (Directive 95/46/EC). While many of the concepts outlined in the new framework are based on the current directive, the GDPR also introduces several new implications. First, there are now higher fines for noncompliance. Additionally, compliance is required by organizations located outside of Europe and by B2B service providers.

Any organization, no matter its location, must comply with the GDPR in order to offer products or services to, or monitor the data of EU residents. This includes organizations located outside of the EU that may have customers who are EU residents. Additionally, the regulation applies to B2B service providers that process data on behalf of organizations.

GDPR compliance requires commitment from both OSSI and its users. Upon signing up to our platform, users agree to our Data Processing Addendum which outlines the terms for using OneSource in a GDPR compliant manner. OSSI is committed to helping users successfully comply with the GDPR.