GDPR is not Y2K according to the ICO
As we welcome in 2018 many businesses are starting to grapple with the new legislation that comes into force on the 25th May 2018. Much of the legislation simple extends the current Data Protection Act, although he sets a far high bar and will be a challenge for any business to get 100% compliance, if for no other reason the legislation is yet to be tested in the UK.
The important thing is to show that you are working towards compliance on or before 25thMay, as Elizabeth Denham (Information Commissioner) has said in her recent article GDPR is not Y2K, in which she said "it?s an evolutionary process for organisations ? 25 May is the date the legislation takes effect but no business stands still. You will be expected to continue to identify and address emerging privacy and security risks in the weeks, months and years beyond May 2018".
We are here to help, so if you are struggling to understand what needs doing, give us a call, buta? great starting points for businesses is the ICO's Data protection self assessment that will give yu an idea of the challenge ahead.
We will continue to provide additional information and guidance via our social media feeds and website over the coming weeks and months as we approach the deadline in May.