Disclaimer: the content of this blog does not constitute and cannot be seen as legal advice, and should not form the basis upon which any person or organisation takes a decision or reaches a conclusion in regards to their rights and/or obligations.
The Global Data Protection Regulation comes into force exactly one year from today. The government has confirmed that the UK’s decision to leave the EU will not affect the commencement of the GDPR. We’ve all heard about it, we all know there’s a lot of work to be done, and if you are let’s say, a bit behind on that project, now is the time to “get cracking”.
So, roll-up your sleeves, take a deep breath, and start by understanding exactly how this is going to affect your business. If you are just starting with the information search, we strongly recommend that you visit the Information Commissioner’s Office website, before anything else. The ICO is “the UK’s independent authority set up to uphold information rights in the public interest, promoting openness by public bodies and data privacy for individuals”.
Before you go on to any other information sources, do read their publications, guides and extensive resources. They are free, easy to understand, and most of all, they are official! Here are a few examples that we found especially useful for anyone starting their GDPR project:
- ICO’s website: https://ico.org.uk/
- Preparing for the General Data Protection Regulation (GDPR): 12 steps to take now
- Getting ready for the GDPR – self assessment tool
Just in case you want to read the entire 99 articles, here is REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL, as published in the Official Journal of the European Union!
Other sources of information
Naturally there are many businesses and individuals writing about GDPR and providing their views, opinions, guidance, and of course, their services. It goes without saying that we must be careful with what we read online, and GDPR is no exception. We share below some resources that we believe to be trustworthy and useful:
- Microsoft Trust Center: https://www.microsoft.com/en-us/trustcenter/Privacy/GDPR
Here you will find a number of resources on this topic, including very useful white papers and examples of how the Microsoft products, that so many of us already have, can help achieve compliance.
- Infor’s blog: Marketers and the GDPR
- Ernst and Young: GDPR publication
We can’t stress enough that despite these authors’ extensive knowledge and experience, GDPR is ultimately your responsibility. So, get the facts straight, from the official sources, before going for someone’s opinion. Yes, including ours!