Ensure your company is GDPR Compliant by the May 2018 Deadline.
How Prepared are You?Our GDPR Readiness Quiz is a graded, online self-evaluation tool to help your organization review its GDPR readiness ‘score’ free.
This overhaul of EU data protection regulation is the most significant in recent history and impacts any organization who does business internationally. Therefore, any US-based company that target consumers in the EU, monitor EU citizens or offer goods or services in the EU (even if it is free) will have to comply.
Organizations who are non-GDPR compliant by the deadline can be fined up to 4% of annual global turnover or 20 Million Euros, per incident.
GDPR Takes Effect In:
The General Data Protection Regulation (GDPR) is designed to enable individuals to better control their personal data. The GDPR’s main focus is to enable individuals with the right to control an organizations access to their personal employee data and information while also improving the way data is protected and processed.
Introduced to keep pace with the modern digital landscape, the GDPR is more extensive in scope and application than the current Data Protection Act (DPA) and requires organizations to develop clear policies and procedures to protect personal data, and adopt appropriate technical and organisational measures.
Watch GDPR Webinar
UK organisations handling personal data will still need to comply with the GDPR, regardless of Brexit. The GDPR will come into force before the UK leaves the European Union, and the government has confirmed that the Regulation will apply, a position that has been confirmed by the Information Commissioner.
Download GDPR Checklist
The Certified MDS Cyber Security team has wide-ranging data protection expertise to help organizations prepare for the GDPR. We offer a comprehensive suite of information, resources, and compliance solutions services.
There are 10 Key Facts Businesses need to know about the new regulation:
1. GDPR Applies to All
This means that any company that works with information relating to EU citizens will have to comply with the requirements of the GDPR, making it the first global data protection law.
2. The GDPR widens the definition of personal data
Companies should take measures to reduce the amount of personally identifiable information they store, and ensure that they do not store any information for longer than necessary.
3. Tighter regulations for obtaining valid consent to use personal information
Once GDPR is in effect, it will be more important than ever for organizations to explain exactly what personal data they are collecting and how it will be processed and used. Without valid consent, any personal data processing activities will be shut down by the authorities
4. A designated Data Protection Officer (DPO) is required
5. Privacy Impact Assessments (PIAs) are mandatory
Before organisations can even begin projects involving personal information, they will have to conduct a privacy risk assessment and work with the DPO to ensure they are in compliance as projects progress.
6. Data Breach Notifications are mandatory
Organisations need to therefore ensure they have the technologies and processes in place that will enable them to detect and respond to a data breach.
7. The GDPR introduces the right to be forgotten
8. Liability beyond data controllers is expanded
Even organizations that are purely service providers that work with personal data will need to comply with rules such as data minimization
9. Privacy by design is required
Moving forward, all software will be required to be capable of completely erasing data, which will be a challenge for a lot of software engineers
10. The GDPR introduces the concept of a one-stop shop
The benefit for business is that they will have to deal with only one supervisory authority rather than a different one for each EU state.
Why Does GDPR Matter to You?The certified professionals at MDS will help you determine which regulations your organization needs to meet.
Updating your IT Infrastructure doesn't have to be a do-it-yourself project.
With MDS, you can focus on growing your business while we take care of the technology. Our engineers go beyond standard canned offerings by creating end-to-end project solutions tailored to fit your organization's specific needs.
MDS experts are available 24/7 and have a wide range of skills that allow you to harness the power of a large IT team, without the overhead.