The General Data Protection Regulation (GDPR) is a EU regulation concerning “digital rights” for EU citizens, which becomes effective from 25 May 2018.
GDPR specifically defines two roles with different legal obligations: Data Controller and Data Processer. API-AXXOS is acting as Data Controller when handling customer data in our internal systems and as Data Processer when providing our Software as a Service products (API PRO SaaS and AXXOS OEE SaaS). When our products (API PRO and AXXOS OEE) are installed and operated by the customer (On Premise) then the customer is both Data Controller and Data Processer.
API-AXXOS has a strong focus on data protection and privacy when handling data about our employees and our customers and we are currently investigating how we can ensure compliance with GDPR when acting as Data Controller (customer data in internal systems) and Data Processer (when providing SaaS products). In addition, we are preparing information and documentation to help our customers comply with GDPR when using our products and acting as Data Controller and/or Data Processer.