What Is GDPR?
The GDPR is a new regulation coming into effect on 25 May 2018. It introduces a number of significant changes that businesses of all sizes need to be aware of and prepare for. It will apply across all EU states including Ireland. The GDPR protects the privacy rights of individuals and places further requirements on organisations to safeguard individuals’ personal data that they collect, use and store.
What is personal data?
Personal data is any information related to an identified or identifiable living individual (referred to as a data subject). The definition not only includes names, addresses and other factors specific to the identity of the individual but also online identifiers such as IP address and location data. Data that identifies owners and employees are examples of personal data. This includes email addresses.
Why does GDPR matter?
The GDPR provides for greater sanctions for non-compliance, such as significant administrative fines of up to €20 million.
How to implement GDPR?
GDPR safeguards the rights of individuals in relation to the processing of their personal data by organisations and other individuals. Businesses must adopt appropriate organisational and technical controls to prevent, reduce and manage the risks posed by their data processing activities to individuals’ rights. GDPR emphasises that businesses must:
Be Transparent in communicating their data processing activities to
(1) Individuals who provide their personal data to the business (employees, owners etc) and
(2) The Data Protection Commission
Be secure in processing personal data
Be accountable. Businesses must not only ensure compliance with GDPR requirements but also demonstrate that compliance.
What can PA Solutions do to help you?
A sample Data protection policy is available to download from our website along with further information on the new legislation and sample forms that you should have completed by your employees and owners. If you would prefer you can contact our office directly and we can send these to you by post or email.
What Is GDPR?