The GDPR or European General Data Protection Regulation is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).
The GDPR simplifies the regulatory environment for international business by providing a single regulatory framework within the entire EU. It replaces the European EU Data Protection Directive (also known as Directive 95/46/EC) and aims to protect the privacy and protection of all personal data collected for or about citizens of the EU.
The GDPR and the Data Protection Directive before it, specify specific roles for parties who deal with personal data: it distinguishes the Data Controller, who determines the purpose of processing personal data, and how it should be done, and the Data Processor, who processes personal data on behalf of the controller.
In the context of the services and solutions provided by Velsera, Velsera acts as a Data Processor. This means Velsera processes data on behalf of a Molecular Diagnostic company or Molecular Laboratory who are the party controlling the data. In this context, Data Processing means Velsera obtains, keeps a record or holds data, and provides the necessary analysis and interpretation tools so the MDx and Laboratory partners (data controllers) can perform their desired tasks.