What is GDPR?
GDPR relates only to personal data and it concerns how the data is collected, stored in a secure facility, controlled, audited and deleted - when it is no longer required. GDPR will require all businesses to review their position in relation to the storage of personal data and to improve their current Data Protection procedures.
What is personal data?
Personal data uniquely identifies an individual i.e. their NI Number, Bank Account details, e-mail addresses, Facebook details, Date of birth etc.
What you need to engage with GDPR
GDPR will change how data protection and data handling operates in businesses. It could affect your business in various ways. Fines under GDPR can be up to €20 million or 4% of turnover, whichever is higher, so it’s important to start considering what you will need to do, right away.
ECA has produced a 10-step guide for members to start their journey towards meeting GDPR requirements. For further details and how to comply, please visit the ICO website.
ECA has also produced the following guides for members to help understand some of the key terms and processes involved in GDPR, including:
- GDPR Introduction
- 10 key steps to engaging with GDPR
- Consent to collect and process personal data
- What, Where, When, How and Who of Data Mapping
The 10 key steps can be found below on this page and all other guides are availabe from the downloads section.