The General Data Protection Regulation act, created by the European Union, updates all previous data collection and protection laws and sets new precedents for the lengths companies must go to in order to be compliant.
What is GDPR?
GDPR came into effect on 25th May 2018 so it’s likely that you’ve already taken action by changing some of your data collection processes. However companies across the EU are required to maintain compliance indefinitely, which is potentially an even larger challenge. Our GDPR compliance service can help you to stay on the right side of the law.
GDPR, or The General Data Protection Regulation act has been created by the EU to replace the 1995 Data Protection Directive which had failed to keep up with new technology and online behaviour. It aims to give users more control over who has their data and how it is used, reduce the unethical and unauthorised use of personal data for marketing by third parties, and fine any company who dares ignore the regulations.
Companies found to be in breach of GDPR can be fined up to 4% of global turnover, which is a huge slap on the wrist to large companies but has the potential to cripple small enterprises. Even as a small business, you must now put the user’s privacy at the forefront and avoid any unauthorised data collection, whether intentional or not.
Ongoing GDPR Support
Now that GDPR act is fully enforceable, it’s important to continue to enforce it within your organisation to avoid any costly fines. There are some important things you need to be doing;