GDPR – Are You Ready ?

What is the GDPR?

The General Data Protection Regulation (GDPR) is the European Union’s new legislation to protect the personal data of EU citizens.

The GDPR has been born of a need to regulate data protection, amongst other data concerns, throughout the European member states by updating the now archaic 1995 Data Protection Directive (DPD); a set of laws created at the onset of the internet era and long before the digital age.

Organisations have been given a two year lead in period to become compliant, ending 25th May 2018.

Download your GDPR toolkit today for guidance and advice from the experts to becoming compliant.

Download GDPR help sheets

Please complete the form below

Name:*
Company:*
E-mail:*
Phone number:*

* Indicates required fields

What about Brexit? Will GDPR still apply?

For the time being, forget about Brexit. Your business’s focus should be on becoming compliant with this legislation until we’re told very clearly otherwise.

Even though Article 50 has been triggered? Yes. The GDPR does not just apply to businesses in the EU. It applies to any organisation that controls or processes EU data, wherever they are in the world.

What does it mean for businesses?

The GDPR applies to any organisation that operates within the EU or with EU data. Failing to comply could lead to fines of up to €20m or 4% of your global annual turnover - whichever figure is larger. However, failing to comply is not simply a financial matter, it could have a significant impact on your organisation's reputation.

Here’s an overview of some of your new responsibilities:

Keep a record of data operations and activities

  • Carry out a data privacy impact assessment (PIA) for systems and projects
  • Consider if you will be required to designate a data protection officer (DPO)
  • Notify the supervisory authority of a data breach
  • Review data processing processes
  • Implement “privacy by design” and “privacy by default”

When do you need to do it?

Businesses must be compliant with the GDPR by 25th May 2018. Once this date rolls around there will be no room for interpretation of the legislation from member states, and all organisations that wish to trade with data within or with the EU must comply in order to reduce the risks to personal data throughout Europe and beyond.

Disclaimer: The information in this toolkit is for your general guidance only and is not and shall not constitute legal advice. If you need advice on your rights or responsibilities or any legal advice around data protection matters, please obtain specific legal advice and contact an adviser or solicitor.

/ Blogs

Share the Post

About the Author

Comments

No comment yet.

Leave a Reply

Your email address will not be published. Required fields are marked *