<img src="https://certify.alexametrics.com/atrk.gif?account=b2hlr1ah9W20em" style="display:none" height="1" width="1" alt="">
    Login
    Find a course

    How To Get Your Business Ready For GDPR

    Published on 17 Feb 2017 by Gemma Castle

    The General Data Protection Regulation (GDPR) replaced the Data Protection Directive (DPD) and brought with it in significant changes to data protection laws as we know it.

    The GDPR came into effect on the 25th May 2018 and aims to unify and strengthen data protection for individuals within the European Union (EU).

    Some of the major changes include tougher sanctions, more rights for individuals, and a wider territorial scope, meaning that any non-EU organisation that does business in the EU will also be obliged to comply. The appointment of a Data Protection Officer (DPO) will also be mandatory for certain companies.

    Yet there are still an alarming number of businesses who have not taken a single step forward in preparing for GDPR, and have no idea of the impact it will have upon them.

    A recent study by Veritas Technologies has revealed that over half of businesses have not even began any work on meeting minimum GDPR compliance standards. This goes hand in hand with an independent survey commissioned by NetSkope, showing that only 1 in 3 British adults are aware of GDPR and over 70% of workers have not yet been informed of this regulation by their employers. 

    Currently, under the Data Protection Act (DPA), failure to comply with data protection rules can lead to firms being fined a maximum of £500,000, with the highest to date being around £400,000. However, when GDPR comes into effect, penalties will be much tougher and will result in firms potentially being fined 4% of their annual global turnover or EUR 20 million, whichever is the highest.

    So, with that in mind, surely this is the incentive businesses need to get to grips with the new regulations and make sure they get it right....right?

    Top tips to get your business ready for GDPR:

    • Know where your data is and get familiar with your data sources - It is impossible to comply with data protection rules if you don't know what data you hold and where it is, so having visibility of your data at all times and knowing what it consists of is crucial.
    • Categorise your data - Even though all of your data certainly does have relevance and importance, some data will be more significant than others. Categorising your data according to its value within your company will help to reduce the risk of security breaches. 
    • Have a Data Protection Officer in place - This applies if you have over 250 employees in your company. They will act as the main go to person for all data protection activities within your firm. 
    • Have detailed plans in place in case it goes wrong - Get your business ready for any possible negative situations. This means having detailed plans and costs in place that can be consulted in the event of such outcomes.
    • Review your current privacy policy - Under the new guidance, this must be written in plain English so it could be that your privacy policies need to be revised and re-written.
    • Educate your staff - Train your employees up and make sure they understand what the impending new regulation means for them.

    Download your free GDPR Training Presentation

    Want to know more about GDPR?

    As well as 30+ free compliance training aids, we regularly publish informative GDPR blogs. And, if you're looking for a training solution, why not visit our GDPR course library.

    If you've any further questions or concerns about GDPR, just leave us a comment below this blog. We are happy to help!

    Leave a comment

    Tick

    Free Trial: Compliance Essentials

    Skillcast Essentials is our best-selling library and there's a reason for that. Essentials library provides comprehensive coverage of the key compliance / conduct issues that companies in the UK face today.

    Request now

    How Should You Deal With Vulnerable Customers?

    Consumer vulnerability in the UK is a subject which has received a great deal of attention over the last few years. It's especially important in times of disruption or change. The financial services ...

    Read More
    7 Steps to Manage Organisational Change Effectively

    We live in an age where change of one kind or another is inevitable. But, by following a few simple steps, you can quickly become a leader in managing organisational change. One minute it's new ...

    Read More
    Compliance Essentials News - March 2020

    This month's round-up of key compliance news includes fines for Cathay Pacific, Betway and Apple, Starbucks/Nespresso child labour, Coronavirus preparation and more... Our pick of the most ...

    Read More
    8 Tips to Protect Your Employees From Email Phishing

    Criminals often take advantage of a crisis by using phishing emails that appear to originate from reputable and familiar organisations. We've got some tips to keep your team safe. Email phishing is a ...

    Read More