Is GDPR compliance still on your to-do-list?
So this is the year that the General Data Protection Regulation (GDPR) Legislation comes into play (25 May 2018). If you have been putting it off, it really is time to start preparing your business to ensure it meets the required criteria in obtaining and using personal data.
Hopefully your business has already been complying to the current Data Protection Act of 1998. If so, GDPR builds upon this.
Let’s be clear, all businesses need to comply and there is minimal possibility that your business doesn’t use personal data in some capacity. It will need some budget assigned to it and you will need to implement new policies to comply; and avoid potential fines of up to €
10 million or 2% of the company’s global annual turnover of the previous financial year, for a first offence.
But where do you start in your GDPR compliance journey? Firstly, it is important that the guidance is understood and supported at management/ board level, and a Data Controller needs to be assigned within the business and registered with the Information Commissioners Office (ICO).
The personal data of all customers, staff and prospects needs to be received, stored and used in the appropriate ways. You will need to track consent to the ownership of such data and be sure to follow guidelines in contacting said people. If your business engages in telemarketing, email campaigns or even direct mail, it is highly likely that you will need to adopt new procedures to ensure you follow the guidelines.
On the up-side compliance is not only a legal requirement but it also makes good business sense.
- Keeping customer data up-to-date and secure reduces the time and money spent on contacting inaccurate records
- Clean data can improve the reputation of your business by increasing customer and employee confidence in you
- Good information handling should reduce the number of complaints being made against you, minimising the possibility of a breach and a consequential fine.
With May 2018 not far away, how ready do you feel in complying with GDPR? We hope you are feeling confident, but if it is feeling overwhelming or confusing, we are here to help.
All you need to do is get in touch.