The implications for employers of GDPR are many and varied and the responsibility lies with each business owner to ensure that they are compliant. With this in mind Sara Marrett from HR Department will help you understand the key facts to help you prepare for this big change
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Stressing about GDPR? Key Facts
1. There is a link at the end of this deck to the associated blog and
webinar recording.
Stressing about
Did you know the new GDPR regulations are coming up
fast and will come into force on 25th May 2018?
The implications for employers are many and varied and
the responsibility lies with each business owner to
ensure that they are compliant. With this in mind Sara
Marrett from HR Department will help you understand
the key facts to help you prepare for this big change.
2. GDPR – General DataGDPR – General Data
Protection RegulationProtection Regulation
3.
4. WHAT & WHEN IS GDPR….WHAT & WHEN IS GDPR….
Data Protection Act
Comes into effect in the
UK from 25th
May 2018
5. WHO??:WHO??:
If you are currently
subject to DPA as a
business, then likely to
be subject to GDPR………
7. ”DATA PRIVACY IMPACT ASSESSMENT”
Any business that processes sensitive data
What you hold
Where you obtained it from
Where its stored (pc and/or paper)
Who has access to it
What you use it for
15. HOW TO HANDLE A DATA
BREACH…..
https://ico.org.uk/for-
organisations/report-a-breach/
16.
17. BizSmart aims to help business owners of small and
medium sized businesses to create value and scale their
businesses through sound practical business support by
providing insight, Clarity combined with a real determination
to help you succeed.
You can access webinars and presentations like this and
more besides through our SmartRoom service here
You can read the associated blog and listen to a live
recording of this presentation by clicking here
You can read Sara’s profile here
Will replace the Data Protection Act in the UK from 25th May 2018.
The Government has confirmed that the UK leaving the EU will NOT affect its commencement
Includes any information which is personally identifiable.
Including sensitive info – medical, financial, performance reviews etc
Excel spreadsheet.
Need to cover clients/prospects/suppliers/employees
How is the data protected – third party
Think about where your data is stored
Need to obtain similar DPIA and/or formal statements from the providers
How is the data protected – locally
Need to be able to advise how data is stored and protected for each. i.e. limited number of employees with access/keys etc
You are responsible for ensuring they are compliant with GDPR.
Don’t need to audit, but obtain a document from them that defines how the data will be handled.
KEY NOTE:-
Data to be kept in UK or EU only, unless good reason or additional practices in place
Why you are collecting it
What you are going to do with it
Best way to do this is with a Privacy Statement
Should you face and action or investigation from the ICO then demonstrating you have effectively trained your staff in DP will be key.
Training videos on ICO website – good practice to show these to your teams and to document that you have done so.
Independent Commissioners Officer
If you are a business owners and processor of personal information you will need to be registered with the ICO.
You can register your business through the link shown
Important part of new regs.
Now give you only 72 hrs to report a data breach to the ICO
Data breach = any unauthorised access to personal data.
Also need to notify any data subjects affected by the breach.
Email hack would certainly count as a data breach
You can use this link to report a data breach to the ISO
Further info likely to be coming out from the ICO over the coming months.