• Register
Wednesday, 18 April 2018 12:37

General Data Protection Regulation (GDPR)

Rate this item
(0 votes)


General Data Protection Regulation (GDPR)



What do I need to know? What do I have to do?


What is the General Data Protection Regulation for the Protection of Personal Data?


On 25th of May 2018, the application of the General Rules for the Protection of Personal Data (or, as it has been called pan-European, the GDPR), will be officially set in power. This is the new European legislative framework that regulates the rights and obligations of those who systematically process personal data. As it has the formal form of a Regulation, the kind of European law, will be set in power for all EU Member States, without having to transpose it into national law, will be fully implemented throughout the Union.

While the critical day of Regulation enforcement is approaching, so does the discussion, but also the concern about the extent of the changes it will bring and the intensity of the consequences for non-compliant businesses and organizations. And the truth is that both the changes that GDPR introduces in the field of personal data protection and the penalties for any violations are very important. Compared with the current regime, the extent of the difference between now and the 25th of May will be chaotic.

However, this new regime does not need to cause panic! On the contrary, the innovations introduced by GDPR, if properly utilized for adapting each business or organization to the new regime, can operate beneficially over time to create favorable economies of scale for any compliant organization.




What is personal data?



Everything that is related to an individual in life and is included in the field of public, professional and private life.



It may be in paper or electronic form. Indicatively, personal data are personal, tax, bank, residence, medical, religious, ethnicity, etc. It is, therefore, easy to realize that the Regulation applies to everyone.



For the processing of the personal data of individuals, their explicit and specific consent is required. The consensus should clearly state the reason for keeping the data and the time frame for keeping it. The individual retains the right to revoke the above consensus at any time he wishes.



Collection and processing of special category data requires a system of increased protection from the collection and management organization.



The responsibility for collecting and processing data is borne by the organization itself and by third parties (suppliers, insurers, external laboratories, external partners, etc.). Any violation of one cumbers the other as well.

What should I do to prepare my business for the GDPR rules?


Telematic Medical Applications undertakes the timely preparation of organizations in order to comply with the legal obligations of the European General Data Protection Regulation (GDPR).

The TMA GDPR consultation team consists of:

    • Lawyer - Legal Advisor, specialized in the Regulation
  • System and Policy Advisor
  • IT Advisor, specialized in IT Security, who will be involved if technical IT support is required

The development of a Personal Data Protection Management System in accordance with Regulation 2016/679 will be developed and adapted to your company data by our specialists.


Trust the professionals


Telematic Medical Applications - TMA is a leading Healthcare System Integrator and Value Added Solutions Provider in the field of Integrated Healthcare Information Systems established in 2007. TMA studies, designs, supplies, installs, supports and maintains eHealth Integrated solutions following ISO 9001, ISO 27001, quality assurance standards. Certification of Telematic Medical Applications in accordance with ISO 13485: 2003 & ISO1348: 2004, for the proper distribution & manufacture of eHealth integrated systems (software and hardware), ensures that all essential controls are included in its procedures for confidentiality, integrity, and availability of sensitive information, to protect data and resources involved in any activity.

In collaboration with INFOCEN, which was founded in 1998 and provides consultancy services for the development of ISO 9001, ISO 14001, OHSAS 18001, ISO 27001 and other management systems, has successfully delivered over 500 projects as well as Risk Assessment studies and Risk Management advisements.

The GDPR consultation team has the capability, competence and ability to provide effective services for the implementation of projects, with specialized knowledge and experience in the fields of Risk Assessment and Risk Management such as:

  • Security of ΙΤ Systems and Information Management
  • Identifying Risks and Opportunities for Business Continuity
  • Environmental issues management
  • Health and Safety Management of employees




Read 843 times

Representatives of



ifa logo













Latest News

Latest Products

News List

Get in touch and learn the latest news regarding the modern Telemedicine products and solutions.

ISO Certification

TELEMATIC MEDICAL APPLICATIONS provides certified quality management system for every aspect of our activities (products and services). TELEMATIC MEDICAL APPLICATIONS is certified by TUV AUSTRIA HELLAS according to international standards EN ISO 9001: 2008, EN ISO 13485:2003 and proved compliant with the provisions of the Ministerial Order ΔΥ8/1348/2004 regarding the retainment of principles and orders for the suitable distribution of medical and telemedicine products.

En ISO 9001:2008 No: 0108127TUV
En ISO 13485:2003 No: 0127012

Greek Ministirial Order No. 1348/2004 Report No: 8050660

S5 Box




Fields marked with an asterisk (*) are required.