Despite a lot of the fanfare and marketing hype, it is not too late to get started on General Data Protection Regulation (GDPR) processes and policies. Here we highlight some excellent resources to help you.
GDPR is similar to something already in place called the Data Protection Act in the UK since the 1980s. The GDPR driven by European Union (EU) will strengthen, update and supercede the Data Protection Act on the 25th of May 2018. Even with Brexit, the UK will still need to abide by these rules.
Your business might already have some of the following that can be used to formulate a company GDPR policy or incorporate them into existing ones.
One of the first places to start is the 11 page PDF from Information Commissioner’s Office. The guide will give you an excellent summary of the regulation.
Think about the information and data in your business. Ask yourself the following questions
Example scenario – You outsource your company payroll to another company. They will need personal employee data to pay your staff wages. Your organisation is data controller of this personal information, and the outsourced payroll company is a data processor. You control the data, it belongs to your organisation or should we say, you are guardians of that personal data? The outsourced payroll company is simple processing that data on your behalf.
Many popular cloud providers and software vendors have dedicated sites outline how their services can be made GDPR compliant. Some provide auditing tools to help you with implementing GDPR procedures, such as centralised search, data retention policies and deletion of data.
HPE overview in less in 90 seconds
Understanding GDPR and the tools in Office 365 and beyond to help meet its requirements
Disclaimer: The information onsite this site is for your general guidance only and is not and shall not constitute legal advice. If you need information on your rights and responsibilities around data protection matters, please obtain specific legal guidance and contact an adviser or solicitor.
If you would like to learn more about GDPR, security and data compliance, then please contact David or Jamie on 0330 058 1701 or email email@example.com