GDPR General Data Protection Regulation


As you probably know, the new EU General Data Protection Regulations (GDPR) will come into effect in 2018. If you are using an application like TOPdesk, you are registering information about other persons, which makes these regulations relevant to your organization. This information is provided to help you be prepared in a pragmatic way.

Read our 12 practical tips

Webinar: TOPdesk and the GDPR

If you're wondering how your Service Desk is affected by the new EU privacy regulations and how TOPdesk can help, our CIO Jeroen Boks answers your questions.

Are you a TOPdesk customer and do you want to read our knowledge items on the GDPR? Then continue reading here.

A number of roles are involved in the GDPR

  • The Data Subject is the person whose personal data is being registered. The GDPR is aimed at protecting these persons from getting harmed by information spread by others. 
  • The party who determines the purpose and means of processing personal data is called the “Controller” (also called the “responsible party”). It doesn’t matter if the registration is done electronically in TOPdesk, Office 365, on paper or on a chalk board. By deciding to have a registration containing personal data, this party takes on a set of obligations and responsibilities.
  • The Recipients are the people accessing and using the data. These are operators in TOPdesk, for instance.
  • Processors are parties involved in the data handling chain. They might be providing the tools that are used in the registration, hosting facilities or other services. They have an obligation towards the Controller to secure their part in the data handling chain. When TOPdesk is used On Premises, the Controller is often also the processor. When you use TOPdesk SaaS, TOPdesk becomes the processor.
  • Each member state will appoint a Supervisory Authority. A data subject can direct complaints towards this authority. And the authority has the means to impose penalties to parties not complying with the privacy regulations.


Here’s a quick overview of responsibilities to consider.


GDPR useful sources

Useful sources


Read our 12 practical tips

Disclaimer: The information and opinions within this website are for information purposes only. They are not intended to constitute legal or other professional advice, and should not be relied on or treated as a substitute for specific advice relevant to particular circumstances. TOPdesk can not accept responsibility for any errors, omissions or misleading statements on this website, or for any loss which may arise from reliance on materials contained on this website.