GDPR is going to affect the way in which you transact with your clients & customers, store, move and delete their data. I’ve had some exposure to this EU directive and it is certainly going to mean that organisations will have to seriously think about how they hold and process their client’s data. By Satinder Tamber, Legal Counsel, OCSL.
The latest data rules, known as the General Data Protection Regulation (GDPR), were agreed in Brussels in December 2015 and become enforceable in 2018. In a nutshell, they key difference between current data protection legislation and GDPR is it’s a single E.U. law covering all of the 28 member countries. So, if you hold, move or transact with an E.U. citizen you will be subject to the GDPR law regardless of which country you reside in.
And, in case, you were thinking Brexit would mean you could forget about all this, think again. Although Brexit has thrown up plenty of grey areas, most analysts agree, businesses and organisations need to continue to plan for the introduction of the GDPR now.
To give you an idea of how not complying with GDPR could affect your bottom line, fines applicable following a breach of the GDPR will be €20m or 4% of global turnover.
GDPR IT Checklist Questions
1) Do you have a strategy for compliance with the GDPR?
2) Have you completed a gap-analysis between your current compliance programme and the requirements of the GDPR?
3) Do you have an accountability framework for data protection compliance?
4) Is your operational set up ready and able to meet the compliance requirements?
5) Are you confident you know exactly how and where your data flows?
6) Do all you processes have data compliance and protection built in to them?
7) Have you ensured any 3rd party Managed Services are fully compliant?
8) Have your got budget in place to manage your GDPR compliance programme?
The key points to note about GDPR is that it’s your own organisation, not any 3rd parties that are responsible and liable for data compliance and data protection. It’s therefore vital to choose trusted, accredited suppliers to support your GDPR compliance strategy.
We help navigate the technology options, with the aim of ensuring the right strategy and digital controls are in place to deliver the highest levels of data privacy and compliance to GDPR.
Here at OCSL we work with our Partners and our customers to identify the technology of today and of tomorrow that will drive the biggest results for their business.