This article briefly discusses Data Protection whilst using SuperView, not M'n'G designs own Data protection policies.
We can not give precise information relating to the use of SuperView in regard to Data Protection and GDPR regulations. The following is simply some of the points to consider as well as some facts about SuperView. Each business should consider its own responsibilities.
To use SuperView no personal data is required from the "client" whose design is being "created" nor is any automatically collected. However there are facilities to type in details such as name and address plus phone numbers and email addresses. This is now considered personal data as it uniquely identifies a person (eg name and address) and is covered by GDPR
Storing of the personal data in a separate system (either electronic or paper based) whilst using a reference number or similar in SuperView, to allow that to be looked up, does not change the data from being personal and covered by GDPR. It may change what needs protecting.
If these pieces of identification data are coupled for example with a "mobility" enhanced room design its probable this should be considered private data, not "just" personal data.
Current versions of SuperView (upto 2018) do not encrypt the data. Although not in an easy to view data format the design files should not be considered secure even when separate from the program.
Under GDPR Personal and Private Data should be kept in a secure manor.
Windows 10 (and earlier) do provide some security eg user login passwords but not all versions provide encrypted file storage (BitLocker in Windows 10 Pro) to protect data itself. Extra software can be purchased to provided encryption facilities and some USB memory "drives" come with such software. Please check with the relevant suppliers on the suitability of their products. For example:-Some provide an encrypted "vault" that files have to be deliberately moved "in and out" which is fine for storage but less so when trying to use the data. Some encrypt the drive but leave the data available for copying etc whilst the machine is running.
It is best to "anonomise" a design file before sending to us. In general this means making a copy and removing the addresses and phone numbers, but remember to check details added via plan notes or similar. If a design file is sent still containing such information we will not collect it or use it in anyway but the responsibility lies with the sender.
We will review SuperView's features and where reasonable add or adjust them to make compliance with GDPR style regulations easier for our users. So if you have any specific requirements or suggestions please contact us.
For example SuperView 7-3-1 and later, available late May 2018, allows a user to record the status of some of the personal data (eg Consent not given, given etc) and reminds the user when that data is used.