Safeguarding data protection and privacy
The growing digital networking of devices and applications in the home means that smart home solutions are storing and processing increasing amounts of highly sensitive personal data. The EU General Data Protection Regulation (EU GDPR) fulfills consumers’ demands for transparency about how their data is used. This regulation came into effect on May 25, 2016, and it defines, among other things, new legal requirements, such as considering data protection in product development (Privacy by Design). After the expiry of a two-year transition period, it will apply in EU countries from May 25, 2018, and, from this effective date, it will impose new requirements on, among others, smart home system manufacturers and installers offering products or services in EU countries. This includes, for example, the “right to be forgotten”. “Starting on May 25, 2018, customers can demand that product suppliers delete all personal data. If they do not fulfill the new requirements, they may face substantial fines and sanctions,” explains TÜV Rheinland expert and IoT privacy specialist Günter Martin, who heads the new Competence Center alongside Udo Scalla.
Competence partner for protected privacy
With the relevant TÜV Rheinland protected privacy certificates, smart home solutions manufacturers offering their products or services in EU countries can prove to their customers that they guarantee data protection and data security in accordance with the EU GDPR. Moreover, the TÜV Rheinland Competence Center offers individual support on the topic of protected privacy. “We show product manufacturers and system suppliers worldwide specific ways in which they can already begin reducing data collection to a defined minimum, and in doing so, strengthen their customers’ trust in smart home products. With regard to the short transition period until May 2018, we recommend that companies address the topic now as quickly as possible,” says Udo Scalla from TÜV Rheinland.
Rounding off the Competence Center’s offering are smart home training programs focusing on topics such as the legal aspects, security issues, and test criteria of smart home installation, which are aimed primarily at installers, architects, and planners. The training programs are available in Germany in 2017 and will be rolled out internationally in 2018. The Competence Center for IoT Privacy is a cross business stream initiative created this year to develop innovative data privacy solutions for TÜV Rheinland clients.
Further information at www.tuv.com/en/iot-privacy
TÜV Rheinland is a global leader in independent inspection services, founded 145 years ago. The group maintains a worldwide presence with 19,700 employees; annual turnover is more than EUR 1.9 billion. The independent experts stand for quality and safety for people, technology and the environment in nearly all aspects of life. TÜV Rheinland inspects technical equipment, products and services, oversees projects, helps to shape processes and information security for companies. Its experts train people in a wide range of careers and industries. To this end, TÜV Rheinland employs a global network of approved labs, testing and education centres. Since 2006, TÜV Rheinland has been a member of the United Nations Global Compact to promote sustainability and combat corruption. Website: www.tuv.com
TÜV Rheinland
Am Grauen Stein
51105 Köln
Telefon: +49 (221) 806-2148
http://www.tuv.com
Konzernsprecher
Telefon: +49 (221) 806-2657
Fax: +49 (221) 806-1567
E-Mail: hartmut.mueller-gerbes@de.tuv.com
