In May 2018 the EU brought in stronger rules surrounding data protection which all companies operating in the EU must follow, regardless of where they are based.
The rules are designed to empower the individual when it comes to their personal data, and to ensure that all companies follow the same set of rules when it comes to storing, processing, transporting and securing data.
There are a number of changes which all businesses need to be aware of. The EUR-Lex website provides the complete legislation but here are some headlines which you might find of use:
This list is not exhaustive, and you should consult the EU website for a full understanding of the legislation.
The 28 data protection authorities have the power to issue warnings, suspend your data processing, or impose fines of up to 20 million Euros, or 4% of your turnover.
The European Commission website has a selection of handy factsheets which guide both businesses and consumers through the changes.
In the UK, you can get more information and resources at the Information Commissioner's Office.
Want to know more about how we can help? Contact us today.