(GENERAL DATA PROTECTION REGULATION)
General Data Protection Regulation (GDPR) came into effect on
25 May 2018, following four-and-a-half years in the making.
If you’re compliant, you have ongoing obligations.
If you’re not compliant, it’s never too late to act.
Either way, you’ve come to the right place with Xynics.
A core principle of GDPR is to ensure that organisations have a legitimate, lawful reason for processing the data, and that doing so respects the individual’s rights.
In the last decade there has been an explosion in the way that organisations collect and use data. Almost everything an individual does now is tracked and logged in data, and much of it is directly attributable to that individual.
For businesses that are already in compliance with the GDPR and the Privacy and Electronic Communications Regulations 2003, there is very little change at all. Every business is different and how you comply will vary however all businesses will need to keep detailed logs and records on why, how and when data is collected or used, and fully document in policies and procedures.
Actually, did you know that along with the GDPR, a new Data Protection Act 2018 also came into effect on the 25th May? This new DPA, enhances upon the requirements of the GDPR in some areas that will likely be relevant to all businesses!
We take the GDPR worry out of your hands so you can still get the full benefit from your data, while reducing the risks.
We’ll advise you on how GDPR and other legislation may apply within your business.
We’ll undertake a discovery process to ascertain what data your business holds and how it is used.
We’ll help you to document your business data flows and procedures.
We’ll guide you on implementing new GDPR compliant procedures and data activities.
We’ll help you to draft privacy statements and consent mechanisms.
Under GDPR, the penalties for non-compliance are potentially high. We’ll help you minimise the risk to your business and keep you compliant.