GDPR - General Data Protection Regulation
GDPR – one of those phrases that has been floating around for a couple of years, a bit like Brexit. We know it’s happening, but what effect is it really going to have on you and your business?
Well, unlike Brexit, which will take a number of years before we finally start to feel the changes, the European General Data Protection Regulation (GDPR) comes into force on 25 May 2018, so you don’t have long to ensure your business is GDPR compliant.
Organisations within the EU (and many outside of it) which handle individuals’ personal data will be subject to GDPR and failure to comply could, in extreme cases, lead to fines of €20m or 4% of an organisation’s annual global turnover for data breaches (whichever is the greater).
If you process any sort of ‘personal data’ the regulations WILL affect you.
- Do you employ staff? You process personal data.
- Do you have a website? Does it have a contact form? You process personal data.
- Do you have a CCTV system? You will be processing the personal data of the people you record.
What should you be doing to prepare for GDPR now?
Organisations need to understand the potential impact on their business. They need advice, they need to audit their business, understand the potential risks and deal with securing the ‘personal data’ they process now. It's time to have a spring clean of all your paperwork and your data.
Wilkin Chapman has experts who cover all areas of your business that will be impacted by the GDPR from both the HR and employment law aspects – what your HR teams need to know to handle data loss, what information you need to give to customers and suppliers and whether you need to appoint a Data Protection Officer.
Data Protection Officer support
If you are a Data Protection Officer (DPO), we will be providing regular updates and holding a DPO forum where you will be able to meet with other DPO’s and share best practice and discuss the challenges and developments that will continually occur.