Is your business ready for GDPR compliance?
New data privacy regulations and the impact on your business.
With the General Data Protection Regulation (GDPR) coming into force it is more important than ever to look at how technology can help customer to achieve GDPR compliance.
GDPR is intended to strengthen and unify data protection for all individuals within the European Union. It is the most important change in data privacy regulation in 20 years. The regulations will apply to all organisations that hold personally identifiable information (PII), no matter how small or large the business is.
From this whitepaper, you will learn:
- How to comply with the regulations
- How to obtain consent
- How to keep your data secure
- Data breaches
- Who Data Protection Officers are
- Being prepared
Get your free whitepaper now
This form collects your name and email so that we can provide you with our GDPR Whitepaper, as well as keep you informed of updates and new services. Please read our Privacy Policy for all information on how we store, protect and manage your submitted data.
Are you ready for GDPR?
Many businesses have been and still are preparing for the GDPR. Around 38% of respondents acknowledge that they are not ready for the GDPR and are still preparing themselves
When is the enforcement date?
25 May 2018
h
Why does it exist?
GDPR is considered to be necessary due to increasing concern about data breaches, cyber attacks, and how data is being collected and used.
h
What evidence of consent will be required?
Organisations will be required to keep records showing what the person was told, what they consented to and when and how they gave consent
Will minor infractions also be punished?
There is likely to be some leniency if you can prove you have attempted to be compliant. But you should not rely on this being the case and will not succeed with any defence that claims ‘ignorance’ of the regulations.
h
What if I don’t comply with the requirements?
If your organisation does not comply, you may face heavy fines of up to €20 million or 4% of your annual turnover, whichever is higher. There is a tiered approach to fines. For example, a company can be fined 2% of turnover for not having their records in order.
When should I begin working towards compliance?
You should begin as soon as possible.
How do I obtain consent?
The request for consent must be given in an intelligible and easily accessible form using clear and plain language. The purpose of data processing must be made clear. Consent must be freely given, specific, informed and unambiguous. It must be clear and distinguishable from other matters and not bundled with the acceptance of other terms and conditions.
The regulations state that explicit consent is required only for processing sensitive personal data. It adds that, for non-sensitive data, ‘unambiguous’ consent will suffice.
We are here to help
There is a vast amount of material freely available about GDPR, but it can be a case of information overload. To help you as you take your first steps towards GDPR compliance Taylor Made are providing one-to-one sessions.
Cyberattacks
Around 70% of cyberattacks use a combination of phising and hacking techniques and involve a secondary victim.