Basic GDPR
You all have data whether that’s a list of potential advertisers or your subscription lists.
You’ve probably been hearing about GDPR (General Data Protection Regulation) a lot recently it is new legislation which is an update of the Data Protection Act and comes in to force on 25th May 2018 and if you’re not ready then you could be fined up to four percent of your organisation’s global gross revenue or €20 million, whichever is greater. Our understanding of this at present is that we need to take this seriously but don’t need to panic. There is a lot of scare mongering going on and some companies/people are making a fortune from it and you can secure your business with some simple changes and after all the wording of the act as we understand it is that you must take all reasonable steps to protect your data.
For GDPR data is any information that can personally identify an EU/UK citizen and applies to everyone regardless of the country you and your business are located in.
If you have a data breach then you must inform the authorities of a breach within 72 hours and inform affected customers “without undue delay.”
You will probably need to change the way you manage your data and secure it from external and internal threats as you now need to know where your data is always.