General Data Protection Regulation
The General Data Protection Regulation (GDPR) very significantly increases the obligations and responsibilities for organisations and businesses in how they collect, use and protect personal data. At the centre of the new law is the requirement for organisations and businesses to be fully transparent about how they are using and safeguarding personal data, and to be able to demonstrate accountability for their data processing activities.
The regulations come into force on 25 May 2018. Business and organisations will need to review and update their operational, administrative and technical measures pertaining to data protection in order to comply.
Non-compliance with these regulations could lead to a maximum fine of 4% of global turnover of the preceding year or €20m, whichever is the highest!
The Data Commissioner has released a readiness toolkit for the SME sector, which you can use to carry out a GDPR audit within your business.
The guide and the accompanying checklist have been designed to assist in particular the small and medium enterprise sector, who may not have access to extensive planning and legal resources. Using this guide, along with the twelve-step GDPR and You guide, will help SME businesses in particular to prepare for a business future that is data-protection compliant.
Please find a link to both documents below which you can download.
The-GDPR-and-You
A-Guide-to-help-SMEs-Prepare-for-the-GDPR.pdf (size 875.6 KB)
For further information about GDPR log onto the Data Protection Commissioner's website at the link below
http://gdprandyou.ie/