It’s widely known and well documented that the UK and Europe are preparing for the largest data protection overhaul in decades: GDPR. What’s less apparent however, is exactly what small businesses need to do. What changes do they need to make to which parts of their systems and processes? And where do they go for assistance?
Cottons have got you covered.
Most people now know that GDPR relates to the storage and usage of data, but they don’t know how they should act.
With so much information regarding the new legislation in circulation, it can be tricky to find clarity in the noise, with a lot of information being generalist. Without seeking one to one advice it’s also increasingly difficult to understand more specific detail around affected areas.
Some of the most frequently asked questions with regards to GDPR are:
- Which data am I allowed to store and how do I store it safely?
- How am I allowed to use data?
- How can I gain permission to use data?
- Will Brexit stop GDPR in the UK?
Let’s look at the facts.
What is GDPR?
The General Data Protection Regulation will replace the Data Protection act 1998. It will come into force on the 25th May 2018, bringing a 21st century approach to data protection. It will have a significant and wide-reaching scope that effects businesses of all sizes.
The new laws expand the rights of individuals, allowing them to control how their personal information is collected and processed. It also introduces a range of obligations that ensure organisations are more accountable for data protection.
For full details, read GDPR: A definitive overview
The Answers You Need
The government has confirmed that Brexit will not affect the GDPR start date and it has also been confirmed that post-Brexit the UK’s own law will directly mirror GDPR.
Now that deals with our political concerns, but other answers are less straightforward. In order to understand what you need to do you must consider your own operations, which data you need to store and which software you’re using as well as what permission you need to get and how.
To find out more about the regulation we have written a detailed overview of GDPR, we also have a 5 steps to GDPR compliance guide for small businesses; but there’s something else…
We are proud to announce that our own Head of IT, Ben Burnett, is now qualified (EU GDPR F) to advise practical understanding of the implications and legal requirements for your organisation with regards to the data protection changes coming in May. Ben will be able to advise over the phone any quick questions you might have or, if you prefer, run a quick audit of your data and how you use it for better, more actionable advice.
GDPR is coming soon and it is better to be prepared for it before the changes than get caught out. As this is a change in law, not legislation.