The General Data Protection Regulations 2018 – known to most as GDPR- will change how are data is handled and who can process it, to a much greater extent than the Data Protection Act 1998. It is suggested that breaches of data protection will result in fines of up to 4% of an organisation’s global annual turnover and is invariably provoking a lot of panic across businesses in the UK.
The main areas that need consideration are surrounding compulsory engagement with the legislation, obtaining and providing consent, the right to access of your information and notifications from the ICO when data has been breached. Your organisation will also need to appoint a Data Protection Officer, depending on its size to regulate the control procedure the organisation deems appropriate to implement.
All businesses of any size should consider its increasing reliance on computing and cloud based file storage; is it covered by a comprehensive anti-virus and firewall software package? Where are your cloud files backed up to? Can these be recovered in the event of a malware attack? If your organisation cannot readily provide answers, this is another layer to your GDPR strategy that will need careful thought and investment.
Merbeck will be supporting our existing customers throughout the transitional period on the approach to 25th May 2018 but did you know we can offer policy updates and practical planning advice to your business? If you feel lost in a sea of legislation change and seminars that only provide an overview, call us today to start your GDPR plan and let us take the stress out of your Data Protection Strategy.