The GDPR (General Data Protection Regulation) legislation comes into play in May this year and will have an impact on just about any company that handles data belonging to any EU citizen.
This is a comprehensive update to the increasingly out of date Data Protection Act. This will affect almost anyone who runs a business and stores client or customer details or who owns a website that collects peoples details or monitors their activities through analytic software like Google Analytics.
As often happens with all new laws there are grey areas and misinterpretations and with huge fines being threatened it’s understandable that some people are worried, even panicked.
The need for the changes have arisen largely through big corporations and powerful websites such as Facebook buying and selling data and basically not being very responsible with people’s personal details, so smaller businesses have less data and less to do to be compliant, but this is a good time for everyone to review their data collection and storage methods and find ways to make them more secure if possible.
So what do you need to do?