Quick GDPR Fixes 2018
We have all had since April 2014 to prepare for The General Data Protection Regulation (GDPR), but it seems that only recently have business leaders been starting to ask questions about how the new rules will affect them and their organisation. To be honest the new rules are extremely stringent and many businesses will need to change the way they collect and store their data. To help you to get the ball rolling we have compiled a few of the easy fixes that will help you to look and change the way you are storing data on your customers.
- Awareness: Who deals with Data Protection within your organisation? Are they aware of the impending changes? Identify any changes or requirements that they will need to action. Designate a person within your organisation to take responsibility for Data Protection.
- Information audit: What personal information and data do you hold and where did you acquire it from? If you think you need to perform an information / data audit you may need to speak to a records management company like Saracen.
- Privacy notices: A review of your privacy notices will be needed. The chances are that your organisation will need to implement these before April 2018.
- The rights of individuals: Do your procedures cover the new rights of for the customers or people who you are holding data on? How will you delete their data? What method will you use if you need to transfer it?
- Access Requests: The new regulations mean you will have to supply information held much more quickly than before. Can you organisation cope with this? You may need to update your procedures.
- Processing personal data: You should check that there is a lawful basis for you to be holding personal data, covered within GDPR. Update your privacy notice to explain why your organisation holds this information.
- Consent of Data collection: Do you ask a person’s permission to collect and hold information on the? If the answer is ‘no’ then you will need to address this immediately. If you do ask permission then still check to see if it meets the standard of GDPR.
- Children: Do you collect or keep data on children or people under the age of 18? If so you will need a parents or guardians consent to collect and store their data.
- Data Breach: Under the new GDPR you will need procedures in place in case of a personal data breach.
Should these new regulations leave you wondering how your business will cope with GDPR, you are welcome to get in touch with us at Saracen (part of the Lok’nStore Group). We have been dealing with data and information storage for over 20 years and will be able to give you free expert advice on the new rules.