Complying with the EU GDPR

What is the GDPR? What will it mean for business?
Why do we need to take action to comply?


The General Data Protection Regulation (GDPR) set to become law by May 2018 are a suite of new laws which the European Commission is launching to strengthen and unify data protection for individuals within the European Union.

The new laws apply to all businesses who hold EU Citizens' Personal Data regardless of geo-location. They both add new requirements on the storage & processing of personal data and tighten up existing regulations - the Data Protection Directive (DPD).

To understand the impact of GDPR and define your response call Bytes Security Partnerships on 0845 075 0560 or email securitysales@bytes.co.uk

#

The General Data Protection Regulation Will Mean

Data Privacy Officer

Companies will have to appoint a DPO responsible for advising on and monitoring GDPR compliance.

New regulations

New regulations and requirements for collecting & recording personal data and processing activities to give citizens data sovereignty.

Notification

Data authorities and in certain cases consumers must be notified within 72 hours of breach discovery, with detailed breach analysis.

Penalties

Tiered penalties up to 4% of global annual turnover (or €20,000,000 if higher) for serious violations & up to 2% for minor infractions.

Authorities

Additional powers for local authorities to investigate data controllers & processors. New European Data Protection Board.

What's the risk if I don't comply?

The GDPR's tiered penalty structure will take a large chunk out of offenders' profits. More serious infringements will be subject to a fine of up to 4% of global revenue.


To set that in context, had GDPR been in place during the Talk Talk breach their record breaking fine would have been around £700million instead of £500K.


gdpr_fine.jpg

GDPR – What’s new at a glance...


Privacy By Design & By Default

Introducing the appropriate technical and organisational measures to keep your data safe

Timely Breach Notification

Both data controllers and data processors have an obligation to report a data breach

Data Protection Impact Assessment

Understand your business exposure and risk of penalty

Right to Erasure & Be Forgotten

Be prepared for the new data subject right to have data deleted (Right to Erasure)

Bytes Security Partnerships focus on strong and proactive account management, provide excellent support and are therefore a partner we can work with long term. The rollout and on-going support we receive is first class. De Montfort University,

Send a GDPR enquiry to our Security Solutions Team

Get a quote...

Email instead Call us