With the GDPR coming up next year, it’s vital that you’ve considered the steps that you will need to take to prepare for the new regulation.
If you’ve found this article, you’re probably already familiar with the concept of the upcoming GDPR, which means you’ve already completed the first step to compliance, Awareness.
The General Data Protection Regulation (GDPR) covers the processes used when handling consumer data in a business environment. This means that, from May 25th, 2018, your business will be accountable for any personal data that you hold, who it came from and how the data has been used. Under the new GDPR, you will need to keep detailed records of how you seek, record and manage consent to hold a contacts personal data.
Under the right of access principle in the new GDPR, an individual is entitled to request any data that you hold on them, and you are obliged to comply within one month of receipt. If you are unable to complete the request in this timeframe for any reason, you are able to extend the period of compliance by a further two months, but you are required to inform the individual within a month of receipt and explain why the extension is necessary.
So what does this mean for my business?
In order to be able to comply with this request and ensure your personal data storage and management are up-to-date, you should assess your data management procedures with a data security and compliance specialist.
help4IT are specialists in data regulation and compliance, with a highly trained and experienced team of data security experts available to help you get ready for GDPR by building lasting business knowledge and implementing bespoke data management policies to ensure the highest level of compliance.