Documents from life sciences, legal, finance, or HR are likely to contain personally identifiable information. Their processing needs to be compliant with the GDPR requirements. Translation providers process personal data on behalf of a company which requests a translation. It is vital for both parties to ensure the security of personal data while data is in transit. Read our 3 key points to find out if your translation provider is GDPR compliant.
1. NDA is not enough
Translation providers that specialize in the field of medicine, pharmacy, law and finance start cooperating with their clients by signing a non-disclosure agreement or, in case of clinical research organizations, also by performing an audit. Since 25th May 2018 this might not be enough due to the fact that nearly all medical and legal translations contain personal data. If your company often requires certified translations, it becomes inevitable to sign an agreement on entrusting of personal data processing with your translation provider.
2. Safe, safer, GDPR
Data in transit should be protected at every stage of the translation process beginning with the client’s handover to the translation delivery. The GDPR requires that translation vendors ensure their activities and their supporting technology are designed to include data privacy principles. An experienced provider must identify the legal basis for data processing, update procedures and the privacy policy. Appropriate pseudonymisation and encryption of personal data is a direct result of the GDPR requirements that may affect you as a Client.
3. Eyes on the prize
Look closely on how your translation provider operates to identify the potential risks. Advanced technology and transparent procedures in compliance with the GDPR should put your mind at ease. However, always ask your translation agency to provide you with the examples of the protection measures taken to defend against personal data breaches. When cooperating with the GDPR-compliant translation provider, you are a winner.
Even though it takes both time and resources to adapt to the new laws, translation process has changed for better. It gives your business more visibility to the document transfer and more control over your translation provider’s actions. Those vendors who are prepared for GDPR will guarantee that documents with different level of sensitivity are treated appropriately. For their own sake.
To find out more on how KONTEKST Translations handled the GDPR adjustments, contact marketing@kontekst.pl
