Compliance to GDPR implementation in specific European states-HUAWEI CLOUD

Compliance to GDPR implementation in specific European states

Compliance with Ireland's Data Protection Act 2018:

Ireland Data Protection Act 2018 (Ireland DPA) was released by the Irish government on February 1, 2018. Ireland is a member of the EU. Ireland DPA is the first national legislation in the EU that gives further effect to GDPR.

As a data controller, Huawei Cloud's basic obligations under the Ireland DPA are basically consistent with the data protection principles and obligations under the GDPR. In addition, Ireland DPA raises the following requirements for personal data controllers:

DPA requirement: The data controller shall provide privacy protection training for personnel involved in personal data processing.

Huawei Cloud measure: Huawei Cloud trains employees to ensure their qualifications, capabilities, and behaviors meet privacy protection requirements; defines the responsibilities of critical privacy protection positions; and conducts background checks and skill appraisals on employees to ensure they have qualifications.

HUAWEI CLOUD provides customers with a large range of products and services such as networking products, database products, security products, solutions for management and deployment as well as other products. Data protection, data deletion, network isolation, rights management and other functions implemented in HUAWEI CLOUD products can help customers implement privacy and security of content data.

For more information, see White Paper for Huawei Cloud Privacy Protection.
Compliance with Spain's Organic Law 3/2018, of December 5, on the Protection of Personal Data and guarantee of digital rights (known in Spanish as LOPDGDD):

On December 6, 2018, BOE, the official journal of the Kingdom of Spain, published the LOPDGDD approved by the Senate to implement the GDPR.

As a data controller, Huawei Cloud's basic obligations under the LOPDGDD are basically consistent with the data protection principles and obligations under the GDPR. In addition, LOPDGDD raises the following requirements for personal data controllers:

Huawei Cloud also provides a wide range of products and services to help you comply with GDPR and LOPDGDD. The products and services include network products, database products, security products, and management and deployment tools. They provide functions such as data protection, data deletion, network isolation, and permission management to help you protect personal data privacy.

For more information, see White Paper for Huawei Cloud Privacy Protection.
Compliance with the Federal Act on Data Protection and the Ordinance to the Federal Act on Data Protection of Switzerland:

In Switzerland, the basic data protection regulation in effect is the Federal Act on Data Protection (Swiss DPA), which came into force on July 1, 1993. In September 2020, the Swiss Parliament revised and enacted a new federal data protection act (Swiss nDPA for short) based on the existing DPA. The nDPA will take effect on September 1, 2023. This revision strengthens personal data protection under the existing data protection law and aims to implement the same level of protection as the GDPR. It brings new obligations to the organizations that have not been managed in accordance with the GDPR.

As a data controller, Huawei Cloud's basic obligations under the Swiss nDPA are basically consistent with the data protection principles and obligations under the GDPR. In addition, Swiss nDPA raises the following requirements for personal data controllers:

The controller shall take appropriate measures to ensure the identity of the data subject and protect the data subject's data from unauthorized third-party access. In addition, the controller shall record the reasons for refusing, restricting, or delaying the provision of relevant information.

Huawei Cloud measure: Huawei Cloud provides customers with convenient channels to exercise their data owner rights. Through the data subject rights portal in the Privacy Statement, customers can access their personal data and modify incorrect or incomplete personal data. After verifying the identity of the customer, Huawei Cloud will provide a copy of the queried personal data for the customer, or update, replace, or discard incomplete or inaccurate information as requested.

Huawei Cloud also provides a wide range of products and services to help you comply with GDPR, Swiss DPA, and Swiss nDPA. The products and services include network products, database products, security products, and management and deployment tools. They provide functions such as data protection, data deletion, network isolation, and permission management to help you protect personal data privacy.

For more information, see White Paper for Huawei Cloud Privacy Protection.

Resource

HUAWEI CLOUD Privacy Protection White Paper