Posts

What is GDPR and how does it affect you?

/1 Comment/in /by

The General Data Protection Regulation (GDPR) is often considered the strictest regulation in the world for securing users’ private data. It applies to all organizations that process the personal data of European Union citizens and residents, and the fines for non-compliance can reach up to €20 million.

This article explores the nature of this regulation, lists its fundamental principles, and offers a checklist for meeting GDPR compliance requirements. This article will be helpful for companies that already follow the GDPR and for those who are going to enter the European Union market.

What is the GDPR?

The GDPR is a data privacy and security regulation adopted by the European Union (EU). It imposes obligations on all organizations that collect and process the personal data of EU residents, even if these organizations operate outside the EU.

The GDPR provides EU residents with control over their personal data and obliges organizations to:

  • Gather, collect, and manage personal data legally and according to strict rules
  • Protect data from misuse and exploitation
  • Respect the rights of data owners

What is personal data?
Under GDPR, this means any information relating to an identified or identifiable natural person (Data Subject), an identifiable natural person can be identified, directly or indirectly, in particular by reference to an identifier such as:

It’s also important to be familiar with specific terms the GDPR introduces to define roles associated with data handling: data controllers, data subjects, and data processors.

Who must comply with the GDPR?

Any organization that stores or processes personal information about EU residents is obliged to comply with the GDPR, even if the organization is located outside the EU.

Yet, there are some nuances. For instance, organizations that have fewer than 250 employees are free from the majority of record-keeping obligations (see Article 30.5), though they still have to meet other GDPR requirements.

However, even if your organization employs fewer than 250 people, you might be obliged to keep records according to strict GDPR rules in case of your processing of personal data:

  • is likely to result in a risk to the rights and freedoms of data subjects
  • is not occasional
  • includes special categories of data as referred to in Article 9
  • includes personal data relating to criminal convictions and offences described in Article 10

Why should you comply with the GDPR?

Meeting GDPR compliance regulations isn’t only about complying with mandatory requirements. It can also help your organization do the following:

Protect personal data

GDPR articles implement high standards for personal data security, obliging data controllers and processors to secure “any information relating to an identified or identifiable natural person.”

Maintain your reputation

Neglecting data privacy regulations may affect your reputation. It could be that a data breach will lead to investigations, fines, and potential lawsuits. Staying compliant with GDPR requirements helps you maintain a reputation as a trustworthy and professional organization. And ensuring secure data processing is a reliable way to minimize the risk of security incidents.

Increase customer loyalty

People want to know that their data is safe and control it, mainly since the GDPR has ensured their rights. Therefore, customers and businesses are more likely to choose a trustworthy and GDPR compliant service provider or subcontractor than a non-compliant one.

Avoid fines and penalties

Article 83 of the GDPR states that the maximum fine for non-compliance is up to 4% of annual global turnover or €20 million (whichever is greater). Fines for GDPR non-compliance depend on multiple factors, including:

  • the duration and severity of the violation
  • the degree of cooperation with the supervisory authority
  • the categories of personal data affected

Ensuring GDPR compliance requires a deep understanding of the regulation. So before proceeding to the checklist on GDPR compliance, let’s take a quick look at the key principles behind the GDPR.

Key principles of the GDPR

GDPR requirements are based on the seven principles laid out in Chapter 2. They embody the main ideas of the regulation and explain the key reasons for implementing all requirements.
Compliance with these principles is essential for good data protection in general and compliance with the detailed provisions of the GDPR in particular.

Contact us to learn more about how SPG Controls can help your business in GDPR compliance.

Facing Up to Contactless Biometric Access Control

/0 Comments/in /by

Thermal imaging and contact tracing technologies have garnered increased attention in recent days with the gradual reopening of some countries’ economy. These solutions are but one part of what portends to be a fundamental shift in how companies consider and use security systems. Access control, which has always been the first and foremost consideration in any security environment, will also be significantly impacted by the lasting effects of the pandemic. The adoption of biometric entry devices could be simultaneously improved and impeded over coronavirus concerns.

SPG Controls is pleased to announce the completion of its latest integration to biometric facial recognition technology. Growing customer demands to help verify the safe return to work for employees, contractors and visitors have accelerated SPG’s plans to include facial recognition, mask-wearing and thermal detection. The keys to the new integrations are high-speed performance, a flexible rules engine and an entirely contactless user experience.

For instance, an employee approaching their building’s main entrance access control doors will present themselves to the camera, the recognition algorithms verify the person, thermal sensors check the temperature, and AI verifies mask-wearing.

Any exceptional readings outside of the parameters implemented are notified to the user, and access may be denied depending on rules agreed by the employer. Recognition may take place either with or without a mask, but building entry may only be possible wearing a mask. In the case of an individual having a high temperature, physical access may be denied, and the employee will be directed to contact their manager or Human Resources department or follow other agreed protocols.

The underlying principle of no physical contact ensures a safe return to the workplace. Access may also be linked to digital health applications or “passports,” used to manage the status of vaccinations, COVID test results, whether through the uploading of results via an API or by uploading copies of documents for third party verification. Employees retain their health credential on their own device and log in on building entry using a dynamic QR code. An audit trail is held in all cases should track and trace for any incident be required.

SPG Thermal Biometric Reader uses next-generation AI facial recognition and body temperature detection technology. This ensures absolutely no surface contact access using high-precision temperature detection on mask-wearing users.

It integrates high-speed image acquisition, face detection, face tracking and face contrast, and human body temperature detection.

Contact us to learn more about how SPG Controls applies the science of biometric access control to help your business.

The Anatomy of a Unified System Integration

/1 Comment/in /by

How Automated Security Systems Work

Having a unified security system integration policy for your Company is a game-changer. It can help provide more security to property and assets but also brings additional benefits.

Unified system integration for security has a lot of advantages, and thanks to SPG Controls technology a lot more is possible.

Some advantages of automated security systems:

Monitoring

Every “event” is included in a system audit trail and can be monitored. For example, Companies can monitor anyone entering their properties, whether single locations or multiple locations, locally, regionally or globally and have data at their fingertips either to a control room, a security room or through a Mobile Application. Entrances and exits may be viewed in real-time, locally, at a regional headquarters, or remotely. Visitors, contractors and delivery personnel can be screened prior to being authorised to enter Company property, minimising the risk to Company personnel.

Regulation of Access for Secure Places

Most Companies have areas in their premises where additional access rights are required; An example could be an IT or communications room, a UPS room, a storage area for high-value items, Corporate policy may dictate that two personnel are required in certain locations or that an airlock controls access by only one person at a time,

Automated systems can be programmed to let only specified personnel or authorised contractors into critical areas within your property. Each event will be added to the audit trail within the SPG Controls system.

Trail Records and Logs

The system creates an audit trail for every event, and a flexible reporting tool enables records to be presented for multiple uses, for example, contractor attendance records, payroll input through time and attendance reporting, fire muster lists in the event of a fire alarm.

Safely Manage Everything

As an authorised and authenticated system administrator, management of the automated security system is at your fingertips. SPG Controls provides an intuitive Mobile Application through which Company personnel can safely and securely manage any security event.

What makes an Integrated System?

Multi-Function Security Control Panel

At the heart of an SPG Controls security solution is the S1000, a multi-functional security control panel. This is typically located at every site and integrates with existing or new security equipment such as movement sensors, door contacts, building alarms, the fire system, CCTV or camera system, access control and locks, intercom, and other security components in the integrated system. In addition, the S1000 provides the capability to connect to multiple other inputs, such as but not limited to, temperature, light, heat and humidity sensors, refrigeration units, air conditioning units and lone worker monitoring with full backward control.

User Interface Devices

Keypads, biometrics, and other interface devices allow authorised security personnel to arm and disarm locks and alarms in Corporate properties. They also allow administrators to control parts of the automated system either locally through the Keypad or remotely through the Mobile Application

Central Software Monitoring System

The software part of the automated security system is crucial as it manages all of the access to all system components. It collects and records data from every input in the system.

SPG Controls offers these advanced parts of an integrated system for security.

S1000 Smart Controller

Remote access is possible thanks to the S1000 Intelligent control panel which can be connected to adaptor modules and network devices.

The S1000 Smart Controller can be installed to monitor and automate alarms and access control rights to areas and doors. There is automatic data collection from readers and other devices within each location.

Remote User Interface

The SPG Keypad supports a variety of features including local arming and disarming of the security equipment. Other components, such as OSDP readers, can provide access control functionality.

Remote User Interface

 

Security in each area can be fine-tuned using Scheduled Access, Anti-pass back, Duress Alarms and Dual Authentication options.

ARCO Platform

The ARCO platform is one of the most advanced management tools that can be used to operate a central security monitoring environment. It can provide access and records to all of the connected monitoring devices such as cameras, alarms, locks, and other sensors. It can also be used for multiple operator workstations for efficiency and redundancy. The platform handles all of the access rights for the areas and security components. The master audit trail is also managed by the ARCO Platform.

ARCO Platform

Software features of the ARCO Platform include alarm management, site configuration, database management, interactive dashboard, distributed workstations, a graphical user interface for site location and status, built-in reporting engine, artificial intelligence capability for programmable logic rules.

To know more about how SPG Controls can help you secure your property and premises, contact us.