Are you GDPR compliant?
The new General Data Protection Regulation (GDPR) came into law on 25 May 2018 for all businesses operating in the EU. While we are not GDPR consultants, we are well-placed to help you ensure that you have the right IT systems and protections to prove compliance. If you don’t know that much about GDPR, we’ve pulled together the basics to help you understand what it’s all about and what we can do to help.
What is GDPR?
The General Data Protection Regulation is an EU directive that intends to strengthen data protection for all individuals in the EU and replaces the UK Data Protection Act of 1998.
GDPR governs how personal data is managed, delivering greater protection and enhanced rights for individuals. GDPR also makes provision for greater sanctions for misuse of data.
The law comes into effect on 25 May 2018, by which date anyone who uses and stores personal data (organisation, business or individual) must comply with the regulation.
Does it apply to me?
If you collect, store and use personal data for any purpose (and that means almost all businesses), then GDPR applies to you. Personal data could mean names and details of staff, suppliers, clients and customers, marketing mailing lists, creditors etc. In fact, if you hold any personal detail of any individual for any reason, then you will need to comply with the regulation.
What does compliance mean?
The requirements for GDPR compliance is expansive and includes how you process, collect, store and secure data. For more information on the steps you might need to take, visit the Information Commissioner’s Office.
What if I’m not compliant?
GDPR compliance is compulsory and failure to demonstrate reasonable and adequate steps to safeguard data could result in sizeable fines, audits and/or restrictions on the use of current data, which could significantly impact your ability to operate.
What are the benefits of GDPR to my business?
Having a robust protection framework demonstrates your commitment to respect and protect your customers’ information and only enhances your attractiveness as a business that can be trusted. Benefits includes:
- Peace of mind for you that your network and data is secure
- Peace of mind for your customer that their information is protected
- Improved reputation as a trustworthy business
- Being on the right side of good business practice, contributing to the respectful and fair treatment of personal information.
How Aflex can help
The path to GDPR compliance is multi-faceted and a significant part of the process is ensuring that your IT systems are robust and secure. Almost all businesses operate almost entirely within an IT system, which means the processing, collection and storing of data happens within the network. During any one of these stages, you need to be certain that your systems are secure and protected. This is where Aflex can help you. Our managed services include firewalls, security as well as data backup and recovery solutions. We take care of the security of your infrastructure so that you don’t have to. Having a trustworthy, reliably managed secure IT infrastructure helps you get and stay compliant.
If you’re uncertain about the robustness of your network, contact us for a health check.