General Data Protection Regulation (GDPR)

GDPR was approved by the EU Parliament on 14 April 2015 and will be enforced from 25 May 2018. IT governance have explained GDPR perfectly by explaining that the regulation “extends the data rights of individuals, and requires organisations to develop clear policies and procedures to protect personal data and adopt appropriate technical and organisational measures to ensure that they are compliant.”


5 key points of GDPR

1. GDPR applies to ALL businesses
The GDPR applies to all businesses worldwide that work with data relating to any EU citizens, making GDPR the first global data protection law.

2. You will need explicit consent to use customer data
One of the most concerning challenges presented by the GDPR is that you will have to be able to prove clear and valid consent for using personal information. It will be crucial for businesses to explain to customers what personal data is collected and how it will be processed and used.

3. Restrictive data handling principles
With GDPR come even more restrictive data handling principles, meaning that businesses are not able to hold onto data for any longer than necessary. The purpose of the data is also not allowed to be changed in any way, unless fresh consent is given.

4. The right to be removed
Businesses now have to ensure that they have the correct processes and technology in place to be able to delete any and all data if it is requested from the data subject.

5. Could you afford to close the business?
Non-compliance of GDPR brings hefty and harsh fines of up to €20 million or 4% of global annual turnover in the prior year, whichever is greater. Not only this, but the threat of insolvency or even a closure as a result of penalties is soon to be a reality.

If you’ve got questions about how this will impact your marketing, why not call us now for an informal chat on 01582 292016