top of page

GDPR! What is GDPR? What do I need to do for GDPR?

Ok, it’s probably not something you want to be delving into, or sorting out, but GDPR is coming, so you need to make sure you and your business are on board. GDPR stands for the General Data Protection Regulation, and it will come into play from May 25th. It will completely overhaul how businesses handle and process data.

GDPR for NI businesses

The GDPR is Europe’s new framework for data protection laws, which replace to previous 1995 data protection directive. There are new obligations for better data management for businesses, a new regime of fines for businesses that misuse data, and new rights for people in terms of the data that is held about them by businesses. GDPR will be enforced by the Information Commissioner’s Office in the UK.

Your business will be affected by GDPR and it includes both personal data and sensitive personal data. As a business you will be more accountable for the handling of people’s information.

  • Under GDPR any data breach has to be reported to the ICO within 72 hours of an organisation finding out – and the people it impacts also have to be told

  • For companies that employ more than 250 employees, there needs to be GDPR documentation on why information is being collected and processed, descriptions of the information held, how long it’s being kept for, and the security measures in place

  • Companies that have “regular and systematic” monitoring of individuals on a large scale or who process a lot of sensitive personal data must employ a data protection officer

  • There is a requirement to obtain consent to hold or process data

  • People can make requests of personal information being held by any business – and they must receive this from the business within 1 month

  • Small offences of GDPR could result in a fine of up to €10 million or 2% of global turnover (whichever is greater)

  • Serious offences of GDPR could result in a fine of up to €20 million or 4% of global turnover (whichever is greatever)

To prepare for GDPR, the ICO has created a guide which you can read here and a 12 step pdf which you can read here

We don’t pretend to have all the answers on this 1, but the more information you can have the better, so you can prepare your business in the best way possible for May 25th.

Featured Posts
Recent Posts
Archive
Search By Tags
Follow Us
  • Facebook Basic Square
  • Twitter Basic Square
  • Google+ Basic Square
bottom of page