The 2018 reform of EU data protection rules are meant to give people more control over their personal data and how it is used by third parties. GDPR applies across the EU but each country has to apply this at national level and in the UK the government has created a new Data Protection Act (2018) which replaced the 1998 Data Protection Act.
So what should you take into account? We recommend you review your current data storage procedures. How do you protect the personal details of your colleagues, customers and suppliers against breaches? Have you reviewed your organisational security measures? Do you keep your IT systems regularly updated and if you use a shared office or co-working space, is your storage area locked and safe?
These are just some starting points but if you need more information we found these two guides to be useful:
- Seven Steps for Businesses to Get Ready for the General Data Protection Regulation by the European Commission, and
- A Brief And Basic Guide To The GDPR by the ITI, Institute of Translation and Interpreting.