What’s it all about?
The EU General Data Protection Regulation came into law on 25 May 2018 in Europe. It is legally binding and affects any organisation that collects and handles personal data from citizens of the European Union. Commendably, the objective of the law is to hand back control of their own data to people. It also ensures organisations/businesses take responsibility for data protection. In addition, it will standardise and strengthen regulations across jurisdictions. Understanding the GDPR basics are essential to the success of your business.
Fines are high
Read our article on the first fine under the GDPR which was £17million. Therefore, risk is high for non-compliance, penalties could be substantial, up to €20 million or 4% of annual global turnover – whichever is higher. Penalties can be applied to any size business. The need to comply with GDPR basics not only comes from the regulators but also clients who expect that data protection is a vital consideration in any business.
What you should search for in a supplier
If as a data controller you intend to outsource any aspect of your processing of personal data to a data processor, you must make sure that this data processor acts in accordance with the data controller’s instructions and the GDPR. The responsibility for GDPR extends to any third party supplier you engage that stores or processes any personal data. Consequently, companies must ensure their suppliers comply and document how they adhere to the standard.
As a data processor for our clients, PretaForm guarantee our obligations under the new GDPR regulations. Contact us for more information.
Get started with our quick guide to GDPR Basics
Research indicates that many have not begun the process of complying with GDPR. The sto fine regime has the potential to bankrupt any business. Don’t take any risks. To help you, PretaForm has prepared a introductory 12 step guide to compliance. You can download it for free.