As you may already know, new data protection regulations (General Data Protection Regulation – or GDPR for short) from the EU come into force on 25th May 2018.
Well, it means that on top of everything else, every company has to consider how it handles personally identifiable data, how and why the data is needed, how long for and who should have access to it.
If you think that this does not apply to your or your business, you may need to think again. Most likely you hold personally identifiable data, such as employee records, so you will need to ensure you have policies detailing how this data should be managed and be able to prove that these policies are being followed.
The risks of getting this wrong are enormous, with potential fines of €20millon, or 4% of your global turnover. In reality this probably won’t be reached, however it does show the increased powers that are being handed to the ICO, who’s fine limit today is £500,000.
According to a recent survey, 62% of business said that they had not heard of GDPR, and only a quarter of those who did know have done anything about it.
We know from our own experience that it can be an overwhelming topic. We soon realised that the task of putting everything together was turning into a full-time job, not only getting ready but also managing this into the future. As a software company we quickly concluded that there must be an easier way – a more streamlined way of managing this information.
We designed i-Comply-GDPR to do two things. Firstly as a tool to help our customers prepare and comply with their GDPR responsibilities, so we included features such as a Policy Builder, complete with policy templates, and the ability to setup and track data assets. Secondly, to help manage the processes into the future, recording actions and capturing requests such as Subject Access Requests. Reminders and tasks are there to help you keep on top of things, and it retains an audit trail just in case you need it.
Having been through this in some detail, we feel that we are ready for the 25th May, and i-Comply-GDPR can help you get through this too. If it doesn’t or you are not sure how, I would love to hear from you. You can always email me directly at email@example.com.