Skip to main content

GDPR for Business

25 May 2018

What is GDPR & how does it impact your business?  

Is your business ready for GDPR (General Data Protection Regulation)? With only a few months left to get your business up to speed before it becomes enforceable - now is the time to act! 

Data protection law is changing. On 25 May 2018 the EU's General Data Protection Regulation (GDPR), the successor to the Data Protection Act, becomes enforceable across Europe, including the UK.

GDPR is a complete update and overhaul of our existing data protection regime, which - somewhat incredibly - dates from 1995. The modernisation has taken rules designed for the age of floppy disks and brought them bang up to date for the age of the cloud.

For your small business or startup, the new rules will mean a new set of rules to follow about:

  • The data you collect;
  • The way you use the data;
  • The way you store the data; and
  • The way you share the data.

These new rules apply to your customer-facing tasks as well as your internal processes. They apply online and they apply offline. And, yes, they will apply even after Brexit.

GDPR will be enforced by large fines - up to 20 million euros or 4% of a company's global turnover - for non-compliance.

This guide is intended as a basic overview of the fundamentals of data protection under GDPR. It is not legal advice, nor is it a comprehensive inventory of your new obligations. It is, however, designed to kickstart your thinking and inspire your compliance journey.

Download the Business Gateway jargon free guide below to help you prepare.