What is GDPR (General Data Protection Regulation)?
This is a set of European Regulations which will change the way European Countries process personal data on both digital and paper documents. The regulation comes into force on the 25th May 2018 (This does not change because of Brexit).
The underlying principles of the GDPR are essentially similar to those as set out in the Data Protection Act 1998 (and related regulation).
- Focuses on the rights and freedoms of data subjects and their Personally Identifiable Information
- Comes into force on May 25th 2018
- Significant Penalties for non-compliance and for breaches
The need for GDPR
The need for greater enforcement of personal data privacy principles and the creation of rights is greater than ever.
Your personal data is your personal property. When you disclose your personal information, there is a risk that it will fall into the wrong hands. These regulations go some way to try and protect you, and all other individuals.
What is PII (Personal Identifiable Information)?
PII is just about anything, that can be used on its own or with other information to identify you. There is a division between personal data and sensitive personal data, and convictions.
Examples of PII;
- Identification number
- Place of Birth
- Login IP
- Cookie Identifiers
What are we doing here at The Studio 4?
At The Studio 4 we take the responsibility of looking after personal data seriously. With the upcoming General Data Protection Regulation, we are taking specific steps required by applicable laws to ensure that appropriate security measures are put in place to protect our client’s personal information from unlawful and unauthorised processing and accidental data breaches or destruction. For example:
- Continuing to invest in our security infrastructure; We’ve recently upgraded our server to the latest industry standard software and security.
- Reviewing and updating our processes on how we store, process and dispose of PII.
- Conducting assessments of our suppliers to ensure that they’re compliant with GDPR and have the correct procedures in place to process data on behalf of us.
- Training all members of staff to make sure they’re aware of the upcoming regulations and how it will affect there day to day jobs.
For more information about the personal data we store and process, you can read our data protection policy here.
Is your website GDPR ready?
A major factor about GDPR is how companies capture personal data. If your contact forms are not compliant with the new regulations, it could severely affect the growth of your mailing list.
To make sure your website forms are compliant, you contact us on 01952 234004 or firstname.lastname@example.org.
For more information on the new regulation please visit the GDPR Portal (https://www.eugdpr.org/) or ICO (https://ico.org.uk/).