The General Data Protection Regulation (GDPR) applies to all businesses established within the EU or if your business provides services and products to EU citizens. It gives the consumer more control over their personal information as you will need to ensure they have many rights such as the right to access, the right to be forgotten and the right to be notified. It’s important that businesses review their data, have set procedures in place for handling data, and security measures in place alongside GDPR.
If you’re not prepared for these changes ahead of May 2018, there are tough penalties in place including fines, prosecution and undertakings. All organisations and businesses must be on-board and ensure all the personal data they obtain is protected by implemented security procedures and safeguards at all times. The life of your business depends on your ability to be GDPR compliant.