With a matter of weeks to go before the General Data Protection Regulation (GDPR) comes into force many businesses that we speak to are still confused about the steps they need to take to make sure they are GDPR compliant.
The internet is awash with checklists, summaries, guides and one-size-fits-all ‘solutions’. But the truth is GDPR isn’t straightforward and off-the-shelf privacy notices are not effective quick-fixes.
Before 25 May 2018 every organisation is going to need to put some time, or resource, aside to:
- Map the personal data they hold and identify the legal bases on which that data is being processed.
- Review data policies and procedures relating to customers, clients, contacts and employees. This doesn’t just mean tweaking your website privacy notice and providing ‘opt-in’ boxes. You will need clear and specific data privacy and retention policies, tailored to your organisation.
- Train all staff who process personal data to ensure they are adhering to your data privacy procedures and know what to do should a breach occur.
We have produced a health check document to help you to assess your GDPR readiness and to provide some no-nonsense advice on the key steps you should now be taking.
If you would like a copy of our GDPR health check document, email firstname.lastname@example.org
Our GDPR experts are also on hand to provide:
- On-site briefings and training sessions for your managers.
For a comprehensive GDPR solution provided by specialist lawyers, email email@example.com or phone 01782 205000 to discuss your specific needs.