10 Simple Steps your business should follow ahead of GDPR

Letterkenny Web Design & Marketing Agency

The GDPR is introduced on May 25th 2018, placing the control of consumer data back to the consumer. Over the years, personal data has grown in significant value, with The Economist even stating it is the ‘world’s most valuable resource’ behind that of oil. Every person who surfs online leaves a digital footprint, featuring information on the websites you visit, the places you have traveled, products you buy or even those abandoned in your cart. This data is then collected and used to target those consumers with personalised ads.

This gives an opportunity for all businesses to carry out a quality audit on their own business to get rid of bad practices and inappropriate procedures.

What you need to know

  1. If your organisation is a public authority or body, or you deal with sensitive data on a large scale, or data processing is core to your operations involving “regular and systematic monitoring”, then you will need to hire a data protection officer (DPO). The DPO must be independent and should report directly to senior management. Tip: create an information protection unit (IPU) where legal experts and information security specialists from the IT department can work together.
  2. Help the DPO run an “information asset audit”. In other words, map your data to determine which department is getting access to which data and for what purpose. Ensure good communication between the IPU and all internal functions, especially IT and marketing. Try to see the DPO as a figure who enables an organisation to function, rather than as just a compliance officer. The DPO can help you adopt “privacy-by-design” principles at the time of developing new applications and services relevant to your customers.
  3. Once you have completed the data asset audit, the DPO will help you find the appropriate “legal basis” for processing in each case, and adapt procedures accordingly. Run “data protection impact assessments” every time data processing is considered highly risky.
  4. Be careful with the way you seek permission to process someone’s data. Let the IPU revise your “notice and consent” forms. Explain in simple terms to customers what data you are collecting and how you are using that information. Give people an easy way to opt in to their data being collected and stored, and check the accuracy of their information. And remember to exercise their rights: access, rectification, erasure, restriction of processing and right to object. Find ways that allow people to access their data in digital form under “data portability” rights.
  5. Let the IPU revise your internal and external information management and security procedures. You need to be sure that your IT providers – such as those offering cloud services – are GDPR compliant, and that high information security standards are adopted all along your data supply chain.
  6. Revise data transfer and sharing agreements. Use “binding corporate rules” when appropriate. If you operate in various EU countries, make sure you know who your lead data protection authority is; you can ask for help on this from the independent data protection advisory board, the Article 29 Working Party.
  7. Train your employees to handle data appropriately. From customer support service, to HR staff, up to the strategic intelligence unit, all employees must understand some basic lessons about information security and data subject rights contained in GDPR.
  8. Keep a log of all the decisions you take and be ready to explain and provide evidence of full compliance at any time. Be prepared for the day after your organisation has suffered a data breach. You will have 72 hours before being required to notify the data protection authority and the media. Remember that GDPR is about managing risks and fostering an accountability culture; if correctly implemented, it will help you protect your reputation and your precious information.
  9. Remember GDPR is not a choice between privacy or innovation: it’s about privacy and innovation. See it as an opportunity to stop storing data for future use and to better understand what data you need to retain. GDPR is an opportunity to reduce the risk of being the victim of a data scandal caused by poor privacy practices.
  10. Foster dialogue within your sector to identify best practices and set new standards. Ask your data protection authority for advice and let your IPU learn from others and share their achievements and concerns. GDPR promotes the creation of codes of conduct and certification programs. GDPR is about improving industry standards – you are definitely not alone.

GDPR isn’t something organisations should fear as the clock ticks down to May 25. Take the right steps to build on your existing data-processing frameworks – the rest should be easy.

 

EXCELLENT
87 reviews on
Blaithin Gildea
Blaithin Gildea
29/02/2024
Aidan & Team have been amazing to work with creating our website to the full needs of our service & customers. Aidan & Team's aftercare service is top class, always there for help & advice at any time! Would definitely recommend Aidan & Team to any business. Patrick Gildea Hairdressing
Caroline Shovelin
Caroline Shovelin
28/02/2024
Aidan & his Team were very professional and patient. Corner Stone Associates new Website is excellent thanks to them. Would highly recommend
Anna O'Donnell
Anna O'Donnell
15/02/2024
I highly recommend as when I was tasked with updating our website and no spare time to do it, Spence Digital agency stepped in and made it really easy.. they have a good project plan approach to get the job done in a reasonable amount of time.
steven o reilly
steven o reilly
14/02/2024
Aidan is great to work with and nothing is ever a problem. Very fast response. Would highly recommend
Thomas Crossan
Thomas Crossan
08/02/2024
Excellent service and very professional
Manus O'Boyle
Manus O'Boyle
01/02/2024
Aidan designed and set up the website for our start up business and it worked flawlessly from the very beginning. We gained a lot of sales through the site due to it being so easy to navigate and the site having all the info needed for our customers. Very easy to work with and he stuck to the timeline from start to finish. 10/10
Conor Holmes
Conor Holmes
14/01/2024
I couldn't recommend Aidan and his team highly enough. Their professionalism and flexibility means we get a sevice that is second to none. Our two websites consistently evolve bringing enhanced customer experiences to our clients and growing sales to us year on year. Nothing is ever too much to ask of them and nothing is ever beyond them and we'd know a lot about that - we've had several unusual, bespoke requirements that are specific to our business. We highly recommend.
Danny Gallagher
Danny Gallagher
13/01/2024
We had Aidan and his team do some work on our website some time ago ,very professional and helpful and we would definitely recommend their services .
Ravin Mehta
Ravin Mehta
10/01/2024
Aidan is such a professional expert, a real joy to work with. His expertise is unsurpassed the website he created is just amazing and his self help tutorials are so helpful. Real quick turnaround. If you need a website this is the only place you need to go ignore the rest go to the best AIDAN SPENCE
seema mehta
seema mehta
10/01/2024
My accountant recommended me tonaaidan as I was looking for an E Commerce website, he delivered more than I ever expected my website looks so professional and I have had many customers who have praised how easy it is to navigate through. Feel free to see for yourself www.indulgenceskinclinic.ie Besides this Aidan has so much patience with regards to website back office my husband and I had no idea but Aidan created self help videos for us to change content and add and subtract our beauty products. Without Aidan’s expertise I can guarantee we would be struggling and our website would not of been WOW! It was a pleasure to work with him and I would highly recommend him. Anyone needing a website you cannot ignore AIDAN SPENCE!!! - An asset to Letterkenny

SOCIAL

POPULAR POSTS

Ready to unlock your online potential?

Schedule Your Free Consultation

Book in your Free, no commitment Consultation Call with Aidan Spence.
We will go through what we can do for you and how we can help your business.

Scroll to Top