How a new EU Data Protection law will affect you.
The General Data Protection Regulation (GDPR) will come into force on the 25th of May, 2018, replacing the existing Data Protection Act 1998.
At the center of the new law is the requirement for companies to be fully transparent about how they use and safeguard personal data, and to demonstrate accountability for their data processing activities.
Businesses have just several months before they need to comply, or they potentially face fines up to €20m or 4% of turnover - whichever is higher. The Regulation will impact how retailers manage the supplier data they hold, and how retailers/suppliers/wholesalers manage their customer data, in the form of loyalty schemes and delivery details for example.
The GDPR deals with a number of key principles for how data is managed:
- The use of personal data must have full 'opt-in' from the individual in question.
- People's personal details will need to be anonymous, in the event of any data breaches.
- Individuals will be able request information as to the exact personal details a Business holds of them.
- GDPR also addresses CCTV issues: the purpose of using CCTV on a premise will need to be completely justified.
In this regard, Celtrino are well aware of the obligations and responsibilities for storing and holding customer data. Celtrino are on hand to advise customers on what relevant data they hold in relation to e-trading solutions - data that will need to be considered in the context of the new law.
The reality is that GDPR will affect most companies to some degree, and the more complex the organisation, the more prepared they need to be.
Celtrino are on-hand to answer any queries about GDPR, on 01 873 9900 in Ireland, or 0044 20 3393 5965 in the UK.