If your company has a web presence, GDPR is an issue for you. This article will inform you of what GDPR means and how it can affect your company.
We will also look at how you can keep your company out of the “hot seat” and implement these policies within your business.
Let’s begin by defining GDPR, provide you a brief history of data use, and then look at how to keep your company in the clear.
This new European regulation went into effect May 25, 2018, superseding the 1995 Data Protection Directive and 1998 UK Data Protection Act which implemented minimal standards until now. Over 22 years have passed and technology has vastly changed, including the amount and ways data pirates attempt to breach company information.
GDPR will give individuals more rights on how their personal data is collected and shared, and will hold companies responsible for what they do with data. This regulation ultimately gives individuals more control over their information.
GDPR will affect all companies in the European Union and any companies offering goods or services to the region. Companies have up to two years to come into compliance or can risk fees of up to four percent of the company’s global turnover.
Authorities anticipate that GDPR is the beginning of tightening e-privacy regulations across the European Union and global companies. While your company may not provide goods and services in the EU, it is likely that that same or similar regulations will begin to be introduced around the globe. To read all 99 articles of the GDPR, you can access the entire regulation here: https://eur-lex.europa.eu/legal-content/EN/TXT/?qid=1532348683434&uri=CELEX:02016R0679-20160504
We’ll make it simpler for you; here is a list of the main points of GDPR:
First note that personal data has historically included name, address, and contact information. GDPR expands the definition of personal information to include IP addresses personal preferences, and any other personal information gathered from individuals that could identify them without a name.
These are some things you can implement in your company, regardless of where you plan to do business that will not only keep you compliant with the GDPR and ready for regulations to come, but also keep you socially responsible, protecting your customers:
Becoming GDPR compliant is simple, but will require a concerted effort if your company is not already practicing these policies. Comment to share how your organization has implemented practices that are keeping you GDPR compliant and socially responsible.