Let us help you get to grips with GDPR regulations that come into force on 25th May 2018.
GDPR, which stands for the new General Data Protection Regulation, affects virtually all businesses and trade associations large and small including schools, the health service, and the public sector in toto, and from 2019 even charities.
Any business handling personal data such as customer records, staff details, payroll and marketing databases using external platforms, like MailChimp or Constant Contact, must ensure that these processes comply with the new rules. Failure to adhere to the new regulations may result in fines from the Information Commissioner's Office (ICO) of up to £18 million or 4% of turnover, whichever is greatest.
Our quick guide will give you straight-forward advice on the key action you can take to be compliant.
GDPR impacts in many different ways and includes new individual rights:
These rights impact on trading in a number of key areas such as marketing.
For example, there must now be a positive opt-in consent cannot be obtained from silence or pre-ticked boxes.
Businesses also need to ensure that they have the right procedures in place to detect, report, investigate and if necessary report to the ICO any personal data breaches.