On May 25 2018, GDPR comes into effect which will have an impact on all businesses who store and handle personal data. For small businesses, the task of GDPR compliance can seem quite daunting, so we wanted to share some information with our customers in the way of support.
So what does GDPR mean for your business?
If you retain or process any ‘personal data’, then you must ensure that you meet the relevant conditions of the new General Data Protection Regulations (GDPR).
What is personal data?
‘Personal data’ refers to any data that can be linked to or identified as a living individual. The GDPR definition of personal data has been developed and expanded from its previous definition under the Data Protection Act, and now includes online identifiers such as an IP address. GDPR is not just limited to the management of customer data, but also takes in to account how you manage any data relating to your employees and staff.
Consent and accountability are key themes throughout the GDPR and you must ensure that you adhere to the regulations when collecting and processing personal data. Businesses will need to be able to demonstrate how they comply with the principles of GDPR, through documents such as a GDPR Policy and Privacy Notice.
What are some of the the implications if you get it wrong?
· Potential fines of up to 4% of your turnover
· ICO Warnings
· Compensation claims from individuals
How can we help?
At CFS, we want to provide support to all of our customers, and have therefore negotiated a discount with our legal partners for GDPR support services.
If you have any questions with regards to GDPR, please don’t hesitate to get in touch with Matt Galloway at firstname.lastname@example.org.