TURN YOUR FOCUS ON THE GDPR
You have probably heard the acronym many times by now and you know that it is related to data protection. If you are still unsure what exactly it's all about, how it affects your business and what to do to deal with it, then keep reading. We have created this page to give you a bit more light into the complexity and obligations which come hand in hand with what turns out to be, arguably, one of the most significant legal matters in the modern workplace for our generation.
Please bear in mind that the below should not be regarded as a legal advice and our aim is to help you get into grips with this new regulation as well as to inform you about what we are doing as a business to be fully compliant.
Please bear in mind that the below should not be regarded as a legal advice and our aim is to help you get into grips with this new regulation as well as to inform you about what we are doing as a business to be fully compliant.
SO WHAT EXACTLY IS GDPR?
"GDPR" stands for General Data Protection Regulation. It aims to further enhance the protection of the personal data of EU citizens and increase the accountability of organisations who collect or process personal data. The regulation will apply to any organisation which conducts business in the EU and collects or holds personal data no matter where around the globe it is located. It does not apply just to digital data but also paper documentation such as contracts, letters, leases, complaints, etc. Companies who aren’t compliant will face hefty fines – up to €20milion or 4% of the annual global turnover, whichever is grater.
The GDPR was approved by the EU parliament in April 2016 and will begin to be enforced from 25 May 2018. It's important to bear in mind that this is a regulation which will replace the 1995 EU Data Protection Directive (DPD). The difference between both is that one is simply a directive while the other (GDPR)- a regulation. While the DPD is a set of rules presented to the entire EU that can be interpreted and implemented differently by each of the 28 countries within the union, the GDPR will be implemented uniformly by one supervisory authority across the entire union.
"GDPR" stands for General Data Protection Regulation. It aims to further enhance the protection of the personal data of EU citizens and increase the accountability of organisations who collect or process personal data. The regulation will apply to any organisation which conducts business in the EU and collects or holds personal data no matter where around the globe it is located. It does not apply just to digital data but also paper documentation such as contracts, letters, leases, complaints, etc. Companies who aren’t compliant will face hefty fines – up to €20milion or 4% of the annual global turnover, whichever is grater.
The GDPR was approved by the EU parliament in April 2016 and will begin to be enforced from 25 May 2018. It's important to bear in mind that this is a regulation which will replace the 1995 EU Data Protection Directive (DPD). The difference between both is that one is simply a directive while the other (GDPR)- a regulation. While the DPD is a set of rules presented to the entire EU that can be interpreted and implemented differently by each of the 28 countries within the union, the GDPR will be implemented uniformly by one supervisory authority across the entire union.
WHAT IS SAFETY2BUSINESS DOING TO GET READY FOR THE GDPR?
At Safety2Business, we have always been committed to ensuring that the data privacy and security of our clients and contacts is taken seriously and used for its purpose. In fact, the principles that it emphasises have been incorporated into our company culture and workflow long before the GDPR was executed. Nevertheless, our team has not stopped making efforts to ensure full compliance and transparency on or before the deadline on 25 May 2018. To prepare for the roll-out of GDPR, here is what we are doing to make the best of the changing online data landscape and the incoming new rules:
• Analyse the data we collect and why we collect it - it's in our company DNA and across all of our departments!
• Audit the personal data we collect and store, where it came from and who we share it with - we will never share your personal details with 3rd parties unless this is part of our contractual agreement with you.
• Review and update our Privacy Policy and Terms and Conditions- we will soon publish the latest versions on our website and add visible links to ensure all of our clients, contacts and website visitors have an easy access to them.
• Make sure that our contracts with 3rd party providers, who are processing personal data on our behalf are updated and are GDPR-friendly.
• Continually review and improve our internal processes and procedures to make sure that we are meeting the GDPR standards across the whole organisation
• Communicate our GDPR compliance with our clients and contacts
Are you GDPR ready? If you have any questions or just want to have a chat about your GDPR "to do" list, please do not hesitate to get in touch with us at [email protected] or give us a call on 0161 414 0500.