Cyber

Preparing your business for the GDPR

Implemented throughout the EU, it will govern all businesses operating within the union and embed a more consistent approach to data protection. Companies that trade with EU based businesses will also be impacted and will need to know what’s changing and how to comply.

The EU General Data Protection Regulation (GDPR) comes into effect on 25 May 2018.

Implemented throughout the EU, it will govern all businesses operating within the union and embed a more consistent approach to data protection. Companies that trade with EU based businesses will also be impacted and will need to know what’s changing and how to comply.

So why is data protection legislation transforming?

Since 1995, the Data Protection Directive (Directive 95/46/EC) has determined how individuals’ personal data is protected within the EU. However, since its inception there have been vast developments in the sophistication and scale of data creation and gathering – for example through the emergence of social media, cloud computing and geolocation services.

As the directive predates these developments, it’s no longer suitable to govern the current data landscape; it needs to be refreshed to address modern privacy concerns and facilitate consistency across the EU. This is what the GDPR will do.

What’s changed?

The new regulation introduces a huge range of changes. In our report, we outline what those changes are, what this means for your business and how to get ready for the GDPR.

Infographic summarising the GDPRAlternatively, view our infographic summarising the GDPR (PDF) [ 275 kb ] and the questions you can ask yourself as you start to prepare. 

What about Brexit?

The GDPR comes into effect in May 2018, while the current time frame for leaving the EU, unless an agreement is reached or an extension is agreed, is for ‘Brexit Day’ to be on Friday, 29 March 2019.

Regardless, GDPR applies to all organisations processing the personal data of individuals in the EU, regardless of where that organisation is based, so following Brexit, UK organisations processing this data will have to remain compliant with GDPR.

Furthermore, it is anticipated that UK data protection laws post-Brexit will be broadly in line with the GDPR.

For more information, contact Manu Sharma.

Read more
Download PDF [ 1689 kb ]