The General Data Protection Regulation (GDPR)

Net Transcripts, Inc. is considered a processor under the regulation. As a processor, we are provided information in the form of audio files and participant lists in order to process (read type or translate) the audio files provided to us by our customers’ clients.

Net Transcripts has to collect and use certain information about the individuals we interact with as part of our operations. Individuals include employees, customers, and suppliers. We may also have to collect and use information to comply with legal requirements, or with legitimate client demands.

The General Data Protection Regulation (GDPR) provides for the safeguarding of this personal information – you can read more about GDPR on the Information Commissioner’s Office page here.

Net Transcripts ensures we treat personal information legally and correctly.

This new regulation doesn’t change the fact that Net Transcipts has always taken every step necessary to keep information securely and properly. GDPR does however provide a more structured framework for everyone to use.

The Principles of Data Protection

Article 5 of the GDPR states that personal information shall be:

  1. processed lawfully, fairly and in a transparent manner in relation to individuals;
  2. adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed;
  3. collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes;
  4. accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay;
  5. kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes subject to implementation of the appropriate technical and organizational measures required by the GDPR in order to safeguard the rights and freedoms of individuals;
  6. processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organizational measures.

Our commitment to doing this

We will ensure we provide appropriate management, rules and controls to:

  • meet all legal obligations to say why such information is used
  • collect and process only appropriate information needed to fulfil operational needs or comply with legal requirements
  • make sure the information is held for no longer than is necessary
  • allow affected individuals to fully exercise their rights under the Act
  • take appropriate technical and organizational security measures to safeguard personal information
  • ensure that personal information does not leave the Company except to provide the client’s required services, or as required by law

What we are doing

The GDPR framework sets out several key actions. These include:

  • identifying what information is held, processed, and for what purpose through an Information audit
  • implementing appropriate IT and physical security measures
  • designing and implementing appropriate procedures and systems
  • training our staff in these, and the general handling of personal information
  • Imposing confidentiality requirements upon employees and upon affected partners.

The information provided by you to complete the operation of transcription or translation in which your data may be submitted to us to provide the most accurate document will be shared only with the employees and partners directly involved in satisfying your request.

We will never share your personal data with parties outside that, unless the law obliges us to do so. We will retain only data that is needed, and only for as long as is necessary.

If you have any concerns regarding your confidentiality, please contact us 800-942-4255.