GDPR - What's it all about?

GDPR in a nutshell - the EU General Data Protection Regulation is came into law on 25 May 2018 in Europe. It is legally binding and affects any organisation or company in the world that collects and handles personal data from citizens of the European Union. The objective of the law is to hand back control of their own data to people, ensure organisations/businesses take responsibility for data protection and to standardise and strengthen regulations across jurisdictions.

Fines are high - the risk is high for non-compliance, penalties could be substantial, up to €20 million or 4% of annual global turnover – whichever is higher. This could be applied to companies of any size. The need to comply not only comes from the regulators but also clients who expect that data protection is a vital consideration in any business.

What you should search for in a supplier - if as a data controller you intend to outsource any aspect of your processing of personal data to a data processor, you must make sure that this data processor acts in accordance with the data controller’s instructions and the GDPR.

As a data processor for our clients, PretaGov guarantee our obligations under the new GDPR regulations. Contact us for more information.

Get started with compliance using our quick guide 

Research indicates that many have not begun the process of complying with GDPR. Time is running out and the stakes are high as businesses could be lost. PretaGov has prepared a 12 step guide to compliance, you can download it for free.