GDPR - What is it
and what does ot have to do with me?
A new European law is coming into force next May, and you must be ready for it!
You will have noticed the increasing media coverage around cyber security, system hacking and all the details surrounding the loss of personal data.
Both public and private sector organisations continue to make the headlines over customer records being stolen, patient data being taken, or the consequences of not using proper security controls to protect sensitive information. The European Union's General Data Protection Regulation (GDPR) comes into effect on 25 May 2018.
You need to act fast to show how you are protecting the data that your collect, use and store.
Organisations will need to appoint a data protection officer and report future breaches within 72 hours. Failure to comply with the new law could lead to fines of up to 4% of turnover.
Brexit, do not think we get out of dealing with the European law just because we are leaving the EU. All countries continuing to trade or have dealings with the EU will still have to show evidence of compliance.
You will need to be able to prove and give evidence to show:
· records are being kept of all personal data
· consent was given for the data to be held
· where the data is' in transit' and ' at rest'
· What the data is used for
· How the data is being protected