GDPR

FAIL TO PREPARE, PREPARE TO PAY

“Data”. It’s the word on the tip of everyone’s tongues, keeps making front page news and very soon, could be the reason your business is fined a lot of money – up to 4% of your turnover in fact.

Why? A new EU legislation called GDPR, which stands for General Data Protection Regulation, is coming in that means businesses like yours must be safer than ever with how you look after people’s information. This includes names, contact details, images and so on.

It’s the biggest change to data laws in a generation. And if you fail to prepare for GDPR before 25th May 2018, which is when their auditing procedures will begin, you’d better start preparing to pay.

 

The 4 stage process to keep your business compliant and save you a fine:

Price Plan

Where we can help

We can help at all stages of compliance, from performing security and risk assessments in our Discover stage to the analysis of threat intelligence and user behaviour. We have the knowledge, resources and experience of working with businesses like yours to make sure your practices are fully GDPR compliant by May 2018.

What’s GDPR again?

GDPR, the General Data Protection Regulation, is a new piece of legislation which will become UK & EU law on 25th May 2018. It’s the biggest change to the law regarding data collection, processing and management in a generation. It’s a big upheaval for now, but it’s going to make things better in the future…

The main purpose of GDPR is to provide transparency and give back control to the individual whose data is being processed. So for people, it’s a good thing. And for businesses, GDPR aims to simplify the intricacies that businesses and organisations face regarding international compliance.

 

WHAT THIS MEANS FOR YOU

GDPR imposes new guidelines on organisations and businesses offering goods and services who process data. The scope of this legislation is massive and it’ll have a direct influence on some of your business’s processes. Notable changes from the Data Protection Act 1998 to GDPR will result in:

  • Enhanced personal privacy rights
  • Increased duty for protecting personal data
  • Mandatory breach reporting
  • Significant penalties for non-compliance

Want to know a bit more?

Here are GDPR’s key principles. As we mentioned, these have been created to empower people and make things simpler for businesses in the long run:

  • Provide transparency, legality and fairness regarding the handling and use of personal data
  • To limit the processing of personal data to specified and legitimate purposes
  • Minimise the collection of personal data to that which is needed
  • Ensure the data is accurate and able to be amended or erased
  • Limit the storage of personal data. It shouldn’t be kept for longer than needed to achieve the purpose for which it was collected
  • Ensure the security, integrity and confidentiality of personal data with security measures
  • Individuals have the right to have their data deleted (right to be forgotten)
  • Revoke the use of certain types of data processing such as direct marketing
  • New procedures for identifying and reporting data breaches.

Microsoft’s role in all this

Microsoft have committed to being GDPR compliant across all their cloud offerings by May 2018 when GDPR becomes law. So if you use their services through us, its technology is going to makes things easy. Their portfolio of cloud services will give you a wealth of solutions to get started on your journey to compliance.

Let's talk

We'll happily provide free advice without obligation

Contact us