The General Data Protection Regulation (GDPR) comes into effect from 25th May 2018. It will replace the Data Protection Act (DPA) in the UK and the equivalent European Data Protection Directive. It will bring us in line with International standards and takes into account technologies and services that were not around when the DPA was introduced.
Personal data and how you process it is now much more controlled meaning how you get it, what you do with it and how long you keep it are to be recorded and made available to the person themselves and the person can also request to know what you have, for it to be corrected or to be deleted/forgotten.
You will need to update policies and procedures.
It applies to both controllers and processors.
We’ve put together a questionnaire which will help you score your readiness and also we’ve a short video and PDF document you can download.
We are also able to help you a get your systems Cyber Essentials ready and help you achieve Cyber Essentials Certification. This is a UK government backed scheme to demonstrate your efforts to keep your organisation and your customers information safe and secure.