Enter your Name and Email address to download the "The 5 Steps Towards GDPR Compliance"
Find out more
"From a personal perspective, in today's world of "Big Data ", GDPR should be celebrated for what it is: an initiative that gives back to each one of us control over who, how and what any organisation can do with our personal information. With its focus on data security, it will also significantly reduce the potential of your personal data being compromised."
For organisations, GDPR means that strict new enforceable limits and controls are put in place over how information belonging to EU citizens can be processed. To comply with GDPR, new policies, procedures and potentially extra security may need to be put in place, and failure to do so could result in huge GDPR fines.
GDPR COMPLIANCE ISN'T JUST ABOUT DOING IT BUT BEING ABLE TO DEMONSTRATE IT.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form :(
The GDPR support covers 100 miles radius of our office in Aylesbury, which includes:-
As qualified GDPR consultants, we can assist with the steps involved in becoming GDPR compliant
The basis on which the UK will leave the EU has still to be decided.
The Government has made clear that the General Data Protection Regulation (GDPR) will be absorbed into UK law at the point of exit, to operate along side the existing DPA 2018, so there will be no substantive change to the rules that most organisations need to follow.
But organisations that rely on the transfers of personal data between the UK and the European Economic Area (EEA) may be affected.
Personal information has been able to flow freely between organisations in the UK and European Union without any specific measures. That’s because we have had a common set of rules - the GDPR.
But this two-way free flow of personal information will no longer be the case if the UK leaves the EU without a withdrawal agreement that specifically provides for the continued flow of personal data.
In this event, the Government has already made clear its intention to permit data to flow from the UK to EEA countries. But transfers of personal information from the EEA to the UK will be affected.
The ICO have published guidance and practical tools to help organisations understand the implications and to help you plan ahead.
1) GDPR limits how an organisation can process personal information.
2) GDPR increases a Data Subject's rights over the usage and processing of their personal information
3) GDPR enhances Data Protection and Cyber Security
Reason 1 - From 25th May 2018, it became a legal requirement for all UK organisations to be compliant with GDPR.
Reason 2 - The penalty for breached, leaked, deleted or compromised personal information could be greatly reduced if the organisation has taken appropriate measures to comply with GDPR.
GDPR Articles 33 & 83 - "If 'Personal Data' which could result in the risk to the rights and freedoms of a natural living person who is a European Citizen, is breached, leaked, deleted or compromised after May 25th 2018, the organisation will be obliged to notify the Information Commissioners Office (ICO) within 72 Hours and also those affected as soon as possible. The ICO will then issue a penalty to that organisation which is effective, proportionate and dissuasive and could be anything up to 20 Million Euros or 4% of their total worldwide annual turnover of the preceding financial year, whichever is higher. "
Reason 3 - Data Breaches can greatly impact the organisations public reputation.
(TalkTalk lost over 100,000 customers as the result of their Data breach in 2015).
To comply organisations will need to identify all the "Personal Information" that they hold, to ensure that they have, or can obtain, explicit consent to continue using it or have some other legal right to do so. They should also enhance the security and protection around the way they process information, to ensure that they are fully GDPR compliant.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form :(