[:en]12 Months ahead of the introduction of the General Data Protection Regulation 2016 (GDPR) into UK law, leading advisors on data management and compliance have formed an Alliance to provide advice and support for what has been described by the UK’s Information Commissioner as a “game changer for everyone”.
The Alliance includes prominent Welsh organisations in the fields of law, software and IT, information security and standards consulting. It was created to raise awareness and to provide a single point of access to the range of expertise and skills any business will need to become GDPR compliant.
GDPR aims to harmonise data protection laws across the EU and provide stronger rights for individuals that reflect the monumental increase in the use of technology and data in business and personal lives. To meet the new standards required, all businesses need to have in place comprehensive but proportionate measures to minimise the risk of breaches and uphold the protection of personal data.
The importance of organisations taking GDPR seriously are reflected in the potential increase in fines that rise from a maximum of £500,000 under the current Data Protection Act to the new higher amount of EUR20,000,000 or 4% of annual worldwide group turnover.
Chris Roberts, co-founder of the Alliance with Amit Singh, said;
“With only 12 months to run before the legislation comes in to force, we recognised that large numbers of companies were struggling to understand the impact on their organisation and the steps they need to take. We concluded that by creating this Alliance, the first of its kind in the UK, to act as a centre of excellence it would benefit businesses as the compliance deadline fast approaches.”
Founding member of the Alliance and Cynnal Cymru member Acuity Legal recently launched their new and innovative product to the market – Acuity DataGuardTM, designed to help organisations assess their current policies and processes to identify gaps and highlight corrective actions to ensure they are compliant by May next year.
As well as providing support relevant to their expertise, the Alliance members will provide organisations with guidance on what steps to take, regular updates on the implementation timetable and a calendar of planned events to increase awareness.
For more information visit www.gdpr-alliance.co.uk
The General Data Protection Regulation 2016 (GDPR) will automatically apply in all EU Member States from 25th May 2018.
The legislation will apply to any business established in the EU whether or not data processing takes place in the EU. It also applies to businesses outside of the EU where goods or services are being offered to EU data subjects or where the online behaviour of EU data subjects is being monitored.
Full details of GDPR can be found at www.ico.org.uk/for-organisations/data-protection-reform/overview-of-the-gdpr/
The UK decision to leave the EU will not affect the implementation of GDPR. Whilst the status of the legislation after Britain leaves the EU is unknown, indications from the Information Commissioner’s Office and UK Government are that the GDPR or similar legislation will be here to stay.[:]