12 July 2017
We have been speaking to a lot of businesses about GDPR, and the response is one of two options:
We read all sorts of figures about the high percentage of UK businesses, especially in the SMB space, that have no plan, willing or even awareness of the new regulations.
The General Data Protection Regulation (GDPR) is a new set of legislations that replace the 1998 Data Protection Act. It applies to anyone who holds and processes data on individuals in the EU, both internal staff data and external customer and supplier data. As you can see, this means it basically applies to everyone! The problem is that there are hundreds of pages of legal jargon that are not practicable for the standard SMB.
To add further confusion, there is a lot of advice out there that is more focussed on businesses making money, rather than factual advice on what is needed. Even if you do understand the legislation, how will you implement changes to be lawfully covered?
Over the next couple of weeks we will be releasing a number of blogs with impartial advice and ideas for helping you manage your GDPR journey.
All of the information we provide is to our best understanding at the time of writing, however this blog does not offer legal advice. If you require advice on your specific business we recommend that you seek independent legal advice.
In our next GDPR blog we will be looking at providing unbiased information about what is actually in the regulations, with details provided by the governing body, the Information Commissioner’s Office (ICO). If you would like to stay up to date with our news please sign up below.