General Data Protection Regulation (GDPR) is coming!

Every business should be aware this new EU data regulation protection policy will come into effect on the 25th of May 2018.

What is GDPR

The General Data Protection Regulation (GDPR) gives people greater control over how their personal data is used, and governs how every business and organisation must handle consumer and employee data.

GDPR very significantly increases the obligations and responsibilities for organisations and businesses in how they collect use and protect personal data.

Good data management is now becoming critical for your business, and there will be sanctions including large fines for companies who are non-compliant.

GDPR Review – are we too late?

It’s not too late to begin your internal GDPR review. There are hundreds of online resources available to help get your head around the requirements, starting with the Irish Data Protection Commissioners own site, , there you can find a 12 step plan starting with Awareness and Accountability.

The important thing is to make sure that someone in your company/organisation (or a 3rd Party advisor) takes responsibility for your data protection compliance and has the support and authority to do so effectively.

Now is the time to consider whether you are required to appoint a Data Protection Officer (DPO) and if so to assess whether your current approach to data protection compliance will meet GDPR requirements.