GDPR – one of those acronyms that is floating around nearly as much as Brexit.
However, while you may be waiting to discover the full impact of Brexit upon your farming business, there is no getting away from the impact of the new General Data Protection Regulation (GDPR), which imposes more stringent obligations on organisations in respect of how they handle personal data.
Personal data has a wide meaning and if you hold any kind of personal information – from customers’ details to those of tenants or employees, then you need to take active measures to ensure you are GDPR compliant. Failure to do so from May 25th could result in fines of up to 20 million euros or 4% of your business’ global turnover (whichever is higher) not to mention unlimited damage to your reputation.
The Information Commissioner (who will regulate compliance) will expect you to provide data subjects (i.e. the people whose data you hold) with certain information, and to take steps to protect their data. You will therefore need to review your policies and procedures and ensure you have the right processes, documentation and training in place in order to demonstrate compliance with the new regime. An active approach is essential.
Our data protection experts are on hand to support you in your journey to compliance. Please contact us for further information.