<img src="https://certify.alexametrics.com/atrk.gif?account=b2hlr1ah9W20em" style="display:none" height="1" width="1" alt="">

how to get your business ready for GDPR

We have just over a year before we see the introduction of GDPR, the new General Data Protection Regulation which will replace the current Data Protection Directive (DPD) and bring in significant changes to data protection laws as we know it.

Approved by the European Parliament in April 2016, GDPR will come into effect on the 25th May 2018 and aims to unify and strengthen data protection for individuals within the European Union (EU).

Some of the major changes include tougher sanctions, more rights for individuals, and a wider territorial scope, meaning that any non-EU organisation that does business in the EU will also be obliged to comply. The appointment of a Data Protection Officer (DPO) will also be mandatory for certain how to get your business ready for GDPRcompanies.

Yet, despite this being just 15 months away, there are still an alarming number of businesses who have not taken a single step forward in preparing for GDPR, and have no idea of the impact it will have upon them.

A recent study by Veritas Technologies has revealed that over half of businesses have not even began any work on meeting minimum GDPR compliance standards. This goes hand in hand with an independent survey commissioned by NetSkope, showing that only 1 in 3 British adults are aware of GDPR and over 70% of workers  have not yet been informed of this regulation by their employers. 

Currently, under the Data Protection Act (DPA), failure to comply with data protection rules can lead to firms being fined a maximum of £500,000, with the highest to date being around £400,000. However, when GDPR comes into effect, penalties will be much tougher and will result in firms potentially being fined 4% of their annual global turnover or EUR 20 million, whichever is the highest.

So, with that in mind, surely this is the incentive businesses need to get to grips with the new regulations and make sure they get it right....right?

Follow these top tips to get your business ready for GDPR:

  •  Know where your data is and get familiar with your data sources - It is impossible to comply with data protection rules if you don't know what data you hold and where it is, so having visibility of your data at all times and knowing what it consists of is crucial.
  • Categorise your data - Even though all of your data certainly does have relevance and importance, some how to get your business ready for GDPRdata will be more significant than others. Categorising your data according to its value within your company will help to reduce the risk of security breaches. 
  • Have a Data Protection Officer in place - This applies if you have over 250 employees in your company. They will act as the main go to person for all data protection activities within your firm. 
  • Have detailed plans in place in case it goes wrong - Get your business ready for any possible negative situations. This means having detailed plans and costs in place that can be consulted in the event of such outcomes.
  • Review your current privacy policy - Under the new guidance, this must be written in plain English so it could be that your privacy policies need to be revised and re-written.
  • Educate your staff - Train your employees up and make sure they understand what the impending new regulation means for them, with our GDPR training library. . Fill out our Contact form to find out more information.

Leave a comment

Tick

eBook: Essential Uncovered

Skillcast Essentials is our best-selling library and there's a reason for that. Essentials library provides comprehensive coverage of the key compliance / conduct issues that companies in the UK face today.

Download now

How to Manage the Compliance Personas in Your Company

Rory has no time for rules, especially the pointless ones that add a lot of work for no apparent benefit. When he encounters such rules, his first thought is to find a work-around. Andy doesn't mind ...

Read More
FCA Compliance News - November 2018

An overview of the most recent and upcoming changes to FCA guidelines for senior managers...   Regulatory Update The last six weeks have been a very busy time for the UK regulators, with both the ...

Read More
Compliance Essentials News - November 2018

This blog is dedicated to bringing you the news that touches the people dimension of regulatory compliance. It's not only about regulations, policies, procedures and systems. It's also about people, ...

Read More
Getting personal: five ways to engage staff with compliance training

It's an on-going struggle for most companies to engage their staff with compliance training. There's a constant stream of new regulations and tweaks to existing ones. And many of these require ...

Read More