<img src="https://certify.alexametrics.com/atrk.gif?account=b2hlr1ah9W20em" style="display:none" height="1" width="1" alt="">
    Login
    Find a course

    7 tips to stay compliant with data protection laws

    Published on 27 Nov 2017 by Lynne Callister

    Following the introduction of the General Data Protection Regulation (GDPR) compliance with data protection laws is more important than ever.

    Over the years, there have been many high profile cases which highlight the consequences of getting it wrong.

    Just last year, financial firm Nouveau Finance Ltd, a loan company registered with the Financial Conduct Authority (FCA), was fined £70,000 for sending spam texts.

    Over a 6-month period, more than 2 million texts were sent unlawfully by a marketing agency contracted by the firm. It is illegal for companies to send text messages to people without their consent. The ICO warned that firms cannot dodge responsibility when services are outsourced.

    Fines for failing to comply with data protection laws became a lot higher when GDPR came into effect on 25th May 2018. So, what can you do to avoid any hefty fines which could potentially cripple your business?

    Top tips to comply with data protection laws:

    1. Be open, tell people what you're doing with their data and get consent - before collecting personal data, explain upfront what data you're collecting, how you'll use it, and who it may be disclosed to. Most companies do this via privacy statements.
    2. Take extra care with sensitive personal data - for example, data on race or ethnicity, age, political opinions, religion (beliefs or non-beliefs), physical or mental health (including disability), sexual orientation, membership of trade unions, etc.
    3. Uphold individuals' rights - remember individuals are entitled to see what personal data you hold about them, to have inaccurate information corrected, to stop their data being used for marketing purposes, and so on. Under GDPR, there is also the new right 'to be forgotten'.
    4. Store information securely - follow company protocols at all times to prevent unauthorised access, as well as data loss or theft. Use strong passwords and encrypt all personal data held on portable devices (such as laptops, memory sticks and tablets).
    5. Data minimisation - don't keep personal data for longer than is necessary; make sure that personal data is destroyed securely and in full.
    6. Take care when sharing personal information with third parties - make sure you have the necessary consent first.
    7. Avoid transferring data outside the EU - other countries don't have the same data protection guarantees so prior consent is always required for this.

    Download your free GDPR Training Presentation

    Want to know more about GDPR?

    As well as 30+ free compliance training aids, we regularly publish informative GDPR blogs. And, if you're looking for a training solution, why not visit our GDPR course library.

    If you've any further questions or concerns about GDPR, just leave us a comment below this blog. We are happy to help!

    Leave a comment

    Tick

    eBook: Essential Uncovered

    Skillcast Essentials is our best-selling library and there's a reason for that. Essentials library provides comprehensive coverage of the key compliance / conduct issues that companies in the UK face today.

    Request now

    How Should You Deal With Vulnerable Customers?

    Consumer vulnerability in the UK is a subject which has received a great deal of attention over the last few years. It's especially important in times of disruption or change. The financial services ...

    Read More
    7 Steps to Manage Organisational Change Effectively

    We live in an age where change of one kind or another is inevitable. But, by following a few simple steps, you can quickly become a leader in managing organisational change. One minute it's new ...

    Read More
    Compliance Essentials News - March 2020

    This month's round-up of key compliance news includes fines for Cathay Pacific, Betway and Apple, Starbucks/Nespresso child labour, Coronavirus preparation and more... Our pick of the most ...

    Read More
    8 Tips to Protect Your Employees From Email Phishing

    Criminals often take advantage of a crisis by using phishing emails that appear to originate from reputable and familiar organisations. We've got some tips to keep your team safe. Email phishing is a ...

    Read More