Over a year ago, General Data Protection Regulations (GDPR) arrived on the statute book in the UK – and the penalties come into force on 25th May 2018. The regulations will apply across the EU and, despite Brexit looming, we are still adopting these measures!
Getting ready for GDPR
So why are very few SME businesses prepared? A survey carried out by Blancco Technology Group found that 43% of businesses have not started their data protection gap analysis – an essential first step.
Unless you have been a victim of your personal data being hacked and then abused – perhaps by identity fraudsters – then you may well see the new legislation as an irritation.
Unfortunately, following a breach, the fines for non-compliance have been designed to hurt significantly. The highest fine for the top tier is €20,000,000 – or up to 4% of global turnover. Ouch!
Most employers need to be registered with the ICO (Information Commissioner’s Office) because they keep records of personal data which makes their staff identifiable. Frequently, this data will be shared with others, such as payroll providers.
If you have not registered, or are unsure if you need to, the ICO has a simple questionnaire which will help. The new GDPR expands on the current Data Protection Regulation. But don’t panic! With a bit of planning and a bit of help, you will be able to ensure you are on the right side of the law on this.
What kind of data?
The information we are talking about is any personal data of employees and potential employees. This includes data generated from employees, their managers, third parties and personal data stored across multiples sites – including on computers, drives, cloud drives or systems, laptops and email.
With the deadline fast approaching; the time to act is now. To start your GDPR journey with Auditel, please complete the form below and a member of the team will be in contact.
This article comes courtesy of The HR Dept