GDPR Starts Today (25th May)

It’s finally here and would you believe it, the world is still spinning! It hasn’t all come to a grinding halt after all.

GDPR was all over the radio this morning (including our own interview on radio Solent) and it was interesting listening to Elizabeth Denham this morning on BBC radio 4 talk about implementation from the ICO’s perspective.

It was reassuring to hear that the ICO is not ‘looking for perfection’; she said that they were not going to penalise businesses that were actively trying to be compliant and that the large scale penalties would not be levied at smaller businesses.

So how do we demonstrate our compliance?

You should:

And at all time, try and abide by the fundamental data protection principles which state that Personal data must be:

  1. Processed fairly and lawfully (lawfulness, fairness and transparency)
  2. Processed for limited purposes and not in any manner incompatible with those purposes (archiving in the public interest, scientific or historical purposes allowed) (purpose limitation)
  3. Adequate, relevant and not excessive (data minimisation)
  4. Accurate and up to date (accuracy)
  5. Not kept for longer than is necessary (storage limitation)
  6. Secure (integrity and confidentiality)

If you need any assistance with your GDPR compliance, please contact me.

For other related blogs on GDPR please click here.