Essex Bookkeepers Discuss GDPR Essentials for Businesses
GDPR is now officially due to come into force on 25th May 2018 and will mark the most wide-ranging change to global privacy law in two decades.
GDPR should in theory make the business owner's life easier because there will be clarity as to how they should be controlling data. There are all sorts of new rules that must be followed, with failure to do so resulting in substantial fines that could reach €20 million or four per cent of group global turnover.
Essex bookkeepers Office Assistants have been looking at what needs to be done in order to be GDPR compliant.
"Consent - Anyone you wish to contact for marketing purposes must have opted in to receive communications from you via a 'clear, affirmative action'. You are no longer permitted to use pre-ticked boxes hidden away at the end of a form or terms and conditions. Neither can any wording that relates to receiving marketing communications be ambiguous or unclear. Opt-outs are no longer allowed; GDPR heralds the age of the opt-in. It's going to be necessary to cleanse existing mailing lists so that everyone opts in under the new rules, otherwise you will no longer be able to contact them after May 2018.
"Right to be forgotten - You can no longer keep data for any longer than you need to, and for anything other than its intended purposes. Data must not be kept indefinitely and any EU citizen will retain the right to request that their data is removed where no legitimate reason exists to process it.
"Personal data processing - Data can no longer be held just for the sake of it. A legitimate reason must exist for you to have brought data together. You must also have a clear reason concerning what you intend to do with the data and for how long you will need to use it. You'll need to be upfront with consumers as to this information."
Office Assistants summarises by saying, "There is no time to waste in preparing for GDPR. Whilst it may seem a long way off, the fact is there is a lot to do, and if you haven't ensured that everything is in place by the deadline of 25th May 2018, then you could be at risk of non-compliance fines.
"If you have mailing lists that need to be opted in, you should not leave this to the last minute as consumers could well end up fed up with the bombardment of email requests by this time, which could lead to wholesale deletion.
"There is useful guidance on the Information Commissioner's Office website (https://ico.org.uk/
Office Assistants offers bookkeeping services and much more to clients throughout the south east of England from their base in Rainham, Essex. For more information visit http://www.officeassistants.org.