GDPR is coming! GDPR is coming! Batten down the hatches! Sit in the corner and wail! Rock silently in utter terror!
I think the above is the recognised approach to small businesses when they find out about the new EU GDPR regulations... and I know that there are still quite a few businesses that have no idea that it is coming, judging by the reactions of some of my clients. I am not a specialist, and as there are so many big words and techie speak related to these data and privacy laws and regulations I really don't want to be. However, I have battled by way through it today. I've analysed my data flows, I've recognised my responsibilities, I've sorted out the data I hold and I've written a Data Policy and a Privacy Policy. The Privacy Policy is available here, and if you really want to see my data policy you can request it from me. If you are a business that holds data, GDPR applies to you and is enforceable from May 2018. It's really worth having a look at and analysing your responsibilities and processes to ensure compliance. There are lots of people out there offering services to clean data, sort out your processes and much more, including some really interesting seminars, so give it a Google and find out what it's all about! I've popped some useful information below that might be helpful. What is GDPR? GDPR is General Data Protection Regulation, and thanks to lovely Wikipedia, we know that... "The General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) is a regulation by which the European Parliament, the Council of the European Union and the European Commission intend to strengthen and unify data protection for all individuals within the European Union (EU). It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international businessby unifying the regulation within the EU.[1] It becomes enforceable from 25 May 2018 after a two-year transition period and, unlike a directive, it does not require national governments to pass any enabling legislation, and is thus directly binding and applicable.[3]" Further information I found a great checklist which is a really useful https://ico.org.uk/for-organisations/resources-and-support/data-protection-self-assessment/data-processors/ Here is the basic information regarding GDPR that you need to know https://ico.org.uk/for-organisations/guide-to-the-general-data-protection-regulation-gdpr/ And also a good summary from IT Pro www.itpro.co.uk/it-legislation/27814/what-is-gdpr-everything-you-need-to-know-8
1 Comment
|
AuthorFreelance Marketing Consultant, especially that Social Media stuff. Archives
March 2018
Categories
All
|