GDPR, an ideal opportunity to address Information Security & Compliance
There are less than thirty days until General Data Protection Regulation (GDPR) replaces the Data Protection Act 1998 as law in UK. Little wonder then, that the new data directive is making headlines.
GDPR will control how data is obtained, processed and used by organisations across the EU (and those businesses that sell products or services into the EU). It is designed to protect the rights and privacy of data subjects (any EU citizen that an organisation holds data about).
If your organisation hasn’t started thinking about GDPR yet, don’t panic; but do act as soon as you can. Now is always a good time to evaluate your data security procedures. Organisations can also continue putting measures in place after the GDPR effective date (25th May 2018) – you don’t have to have it all ‘boxed off’ right away. And, there are some surprisingly simple first steps you can take to put you on the path to compliance…It’s true that demonstrating compliancy will require some effort; data management and consent processes will need to be reviewed for a start. However, there are also considerable benefits of GDPR that could bring better customer engagement for businesses and more effective marketing. Plus, enhanced information security and protection of data can only be a good thing, for all of us.