By now, business leaders are aware of the impending GDPR regulation; if you’re one of the few late to the party, catch up here. But for those aware of the GDPR, it can still be difficult to be aware of what the new EU directive means for your business. As your inbox and social feeds are flooded with GDPR Jargon Busters and one-stop-shop solutions, the reality is the scope of the regulation encompasses so much of your business’s processes and daily occurrences, it won’t be complied with easily.
According to a Dell survey, over 80 percent of their respondents from across the globe know little or nothing about GDPR and damningly 97 percent of companies said they didn’t have a plan to be ready for GDPR.
The GDPR will impact businesses in all industries, and all departments within each industry. It is important for business leaders to realise the new responsibility on their business when handling data. Furthermore, it is important for business leaders to know who in their business is responsible for managing and protecting the data they process. This will be the role of a Data Protection Officer, and its time your business appoints one.
When the GDPR comes into effect, it will be compulsory for certain organisations to appoint a Data Protection Officer. Along with public authorities processing personal information, organisations that regularly and systematically monitor data subjects on a large scale will require an internal Data Protection Officer. This need stretches further to organisations processing special categories of data on a large scale. It is estimated by the International Association of Privacy Professionals (IAAP), that 28,000 Data Protection Officers will be required – in Europe alone. Differing from various territorial regulations, the GDPR focuses on what organisations do with personal information, rather than other factors such as size or industry. The GDPR is essentially a catch all net, imposing its regulations across international businesses.
As many people are focused on what GDPR means for their electronic data, an important point to note is that the regulation covers all data including hard copy files.
Over the next year, Inpute will be publishing several guides, tips and instructions on how businesses can become GDPR compliant.