Are you ready for GDPR?

GDPR is Europes newest Data Protection law, which launches May 25th 2018

GDPR brings with it a greater ability for the ICO to issue even more substantial penalties for non-compliance of Data Protection as from 25 May 2018. The fine will be based on the turnover of a single breaching entity. This is a huge increase from the current maximum level of fine, which is £500,000. This does raise the question: can your business afford to get it wrong?

Under the current DPA, data processors are not directly liable for damage caused to data subjects (i.e. individuals whose personal data has been processed) by their processing operations. Under the new General Data Protection Regulation all organisations that process personal data will be required to abide by an anbundance of new actions. Data subjects will also be able to seek compensation directly from any processor that breach's their obligations.

Processors will be required to:

• maintain records of processing activities
• implement appropriate security measures
• appoint a data protection officer where the core processing activities involve large–scale monitoring or processing of sensitive personal data
• comply with international data transfer requirements
• co-operate with Data Protection Authorities, as necessary

GDPR grew from a desire to protect and empower all individuals. Unsurprisingly, the General Data Protection Regulation affords individuals enhanced rights in relation to:

• access to information
• correcting inaccuracies
• the ‘right to be forgotten’
• prevention of direct marketing
• the right to object to automated decision making and profiling
• their data being made available in a suitable format allowing the data subject to easily transfer it to other data controllers
• receiving more information at the point their data is collected

In principle, this sounds great for consumers but will impose, as mentioned above, more onerous obligations on all businesses within the UK & Europe

For more information on how we can assist you becoming compliant or to arrange a GDPR gap analysis contact us direct 03330 433 533 or click here