Or maybe you are not quite sure how it affects you and what you need to do. Most businesses in the latter category and have not taken steps to prepare for GDPR compliance by 25th May 2018 – when it officially becomes effective.
GDPR is the new data protection framework that applies to any EU based business that processes personal data. GDPR also covers any business based outside the EU if it offers goods or services to EU data subjects (customers) or monitors their behaviour. For UK based companies the new Data Protection Bill is currently being read in Parliament and this will bring the GDPR into UK law (despite Brexit).
Given many UK businesses have not made any preparation for GDPR, we are offering a range of services to help businesses prepare. We carry out a review of your business, outlining the activities required before 25th May 2018. We also provide an in-depth review of personal data management and identify gaps in controls and documentation required by the GDPR.
Please note failure to comply with GDPR after 25th May 2018 can result in financial penalties and risk of litigation.