easy portal contact 
Language Switch
Solutions

easyarchive Compliant archiving

easyinvoice Secure invoice management

easycontract Transparent contract management

easyhr Smart HR management

easy DMS Efficient document management

SAP Add-ons

Experience digitization easily and quickly with third-party systems, such as SAP®. easy provides SAP-certified add-ons.

learn more
Application Areas
references
Banks and insurances Energy industry Manufacturing and production Public service and associations View all industries
application areas
Archiving Document Capture Procurement Processes Digital Personnel File Digital Signature
Document Management Incoming Invoices Electronic File Contract Management Workflows
successful customers

Read success stories from some of the 5400+ easy customers who are digitally transforming their businesses with easy products.

case studies
know-how
Knowledge

Browse the blog. Use free white papers, checklists and guidelines and expand your knowledge in webinars and at events.

Digital accounts payable processing

Find out in our white paper how your company can benefit from electronic incoming invoice processing.

free whitepaper
Service & Support
Resources

Develop your potential with the easy Academy, optimize your business with Managed Services and get help from professional easy Support.

Support

As a direct customer, you can benefit from our support.

support
Partner
Partner Network

Benefit from our experience as a software manufacturer for ECM, SAP, Cloud and SaaS solutions. We want to grow together with our software partners.

Become a partner

Become part of our partner community and expand your business model with the successful easy product portfolio.

become a partner
About easy
easy group

With over 30 years of experience, easy software is one of the market leaders for archiving, ECM, and DMS software solutions in the German-speaking region.

Contact Us

If you have any questions, just let us know.

contact us
easy portal

Glossary

GDPR (General Data Protection Regulation)

The GDPR has regulated the protection of personal data across the EU since 2018 and requires organizations to implement transparent, secure processing practices.

The General Data Protection Regulation (GDPR) has been directly applicable law in all EU member states since May 25, 2018. As a European regulation, it governs how personal data must be processed, stored, and protected. The GDPR aims to strengthen the rights of natural persons and create a uniform data protection standard across the European Union. It requires organizations to establish transparent and secure processes for handling personal data.

Significance of the GDPR for Organizations

The General Data Protection Regulation ensures that personal data is processed lawfully, transparently, and securely. This includes in particular:

  • Lawfulness of Processing: Personal data may only be processed on the basis of a legal ground (e.g., consent, contract fulfillment).
  • Transparency and Information Obligation: Data subjects must be comprehensively informed about data processing activities.
  • Purpose Limitation: Data may only be collected for specified, explicit, and legitimate purposes.
  • Data Minimization: Only data that is necessary for the respective purpose may be processed.
  • Storage Limitation: Personal data must be deleted once the processing purpose has been fulfilled or legal retention periods have expired.
  • Data Subject Rights: Individuals have the right to access, rectification, erasure, restriction of processing, and data portability.
  • Security of Processing: Organizations must implement technical and organizational measures (TOMs) to protect data.
  • Accountability: Compliance with the GDPR must be demonstrable at all times.

GDPR and Document Management Systems

Document management systems (DMS) help organizations efficiently implement GDPR requirements. Modern DMS solutions offer:

  • Secure Data Archiving: GDPR-compliant storage with encryption and access protection
  • Automated Deletion Concepts: Timely deletion of data in accordance with legal retention periods
  • Rights and Role Concepts: Clearly defined access rights for sensitive personal data
  • Audit Trail: Complete logging of all access and actions to fulfill accountability obligations
  • Data Protection Workflows: Structured processes for data subject access requests (DSAR) and deletion requests from affected individuals
  • Privacy by Design: Data protection is integrated into the system architecture from the outset

A document management system enables audit-proof and GDPR-compliant archiving of documents containing personal data. Through automatic metadata capture and intelligent indexing, documents with personal references can be quickly identified and efficiently provided in response to data subject requests. At the same time, the system ensures that data is automatically deleted after retention periods expire.

This is particularly relevant for the digital personnel file: This contains highly sensitive personal data such as employment contracts, payroll statements, performance reviews, and health data. A DMS ensures encrypted storage, finely graduated access rights based on the need-to-know principle, and automated deletion periods for applicant and employee documents. This ensures that sensitive HR data is processed in compliance with regulations throughout the entire lifecycle – from application to termination of employment – and that data subject rights are protected at all times.

conclusion

Compliance with the GDPR is essential for organizations to protect data privacy rights, avoid substantial fines, and maintain the trust of customers and employees. A professional document management system helps efficiently meet complex requirements and ensures secure, privacy-compliant document management throughout the entire organization.

free whitepaper:
From the GDPR to NIS-2

This white paper highlights the most important aspects of the GDPR and NIS-2 and shows how companies can not only comply with these regulations by using innovative technologies such as AI-supported systems, but also benefit from them in the long term.

download here

GDPR FAQ

What Data Falls Under the GDPR?

All personal data falls under the GDPR. This includes names, addresses, email addresses, phone numbers, IP addresses, location data, biometric data, health data, and all information relating to an identified or identifiable natural person.

What Penalties Are Threatened for GDPR Violations?

Violations of the GDPR can result in fines of up to €20 million or 4% of global annual revenue – whichever amount is higher. Additionally, compensation claims by affected individuals may be asserted.

What Are Technical and Organizational Measures (TOMs)?

TOMs are measures to ensure data protection. These include technical solutions such as encryption, access controls, and firewalls, as well as organizational regulations such as data protection policies, employee training, and procedural instructions.

Who Does the GDPR Apply To?

The GDPR applies to all companies and organizations that process personal data of individuals in the EU – regardless of where the company is based. This includes:

  • Companies: All types of companies, regardless of their size or industry.
  • Self-Employed Individuals: Freelancers and sole proprietors must comply with the GDPR.
  • Public Institutions: Government agencies and public bodies are subject to the GDPR.
  • Associations and Organizations: Non-profit organizations must also comply with data protection regulations.

easyarchive

Archive data securely and compliant.

Discover easy archive

easyhr

Use personnel files and self-services.

Discover easy hr
Newsroom Media Library Glossary
Contact us

+1 267 313 57-80

Newsletter

We will keep you regularly up to date. Subscribe to our newsletter and find out everything you need to know about the digitization of business processes. The topics will be prepared for you in a tailor-made and varied way.

Newsletter subscription

Solutions

easyarchive
easyinvoice
easycontract
easyhr
easy DMS

Application areas

Archiving
Document Capture
Procurement Processes
Digital Personnel File
Digital Signature
Document Management
Incoming Invoices
Electronic File
Contract Management
Workflows

Resources

Support
Academy
Managed Services
Blog
Media Resources
Events
Customer Stories
Glossary

About easy

Company
Press & News
Investor Relations
Find partners

Archiving
Document Capture
Procurement Processes
Digital Personnel File
Digital Signature
Document Management
Incoming invoices
Electronic File
Contract Management
Workflows

Support
Academy
Managed Services
Blog
Media Resources
Events
Customer Stories
Glossary

Company
Press & News
Investor Relations
Careers
Find partners

Social

Imprint

General terms and conditions

Disclaimer

Privacy