Are You Ready for the New EU Data Protection Laws?

Data Protection Laws Are Changing! The General Data Protection Regulation (GDPR) comes into effect on the 25 May 2018. It’s a single set of rules that is designed to protect the personal data of individuals in their private, professional or public life. The regulation will change the way your business can collect, use and transfer personal data. You will need to know where data is stored and you may even need to change the way data is collected and how you respond to requests about personal data you hold. For SME’S this means you will need to take some steps to demonstrate you’ve taken the GDPR seriously as there are significant sanctions and penalties for non- compliance, including fines of up to 4% of a business’s turnover. What do you need to do now to make sure you are compliant? A good start would be to look at your current approach to managing customer data and what and where it is held and document this. Then: Appoint someone in your business as the lead contact to manage the GDPR; Identify any areas where customer data is not adequately protected or managed; Review back up, disaster recovery and archiving processes for weaknesses; Make sure everyone in the business knows about the new rules and your procedures; Protect data on mobile devices in the same way as you would do in the business, and use encryption to prevent data if the device is lost or stolen; Ensure everyone knows their responsibilities to protect personal data; and Document and regularly review your new procedures. The new regulations apply to all businesses that hold personal data whatever the size. If you would like to know more and get a copy of our GDPR checklist for SME’s then please contact us.