General Data Protection Regulation (GDPR) – Assistance from the IGA
Do you know what personal data you hold? Do you know if the customer information you acquire is secure from leaks, accidental or otherwise? Do you know where you get personal information from and where it goes to? Do you know what to do if somebody requests the details of the information you hold about them? If the answers to all these questions is no, you could be liable to a fine of 4% of your turnover or 20 million euros, whichever is the greater.
The General Data Protection Regulation (GDPR), which comes into force in May 2018, will mean changes in the way companies gather, store and use information.
The GDPR is EU-designed legislation with the objective to strengthen the rights of individuals when companies use, collect and share their personal data. The government has confirmed that the UK’s decision to leave the EU will not affect the commencement of the GDPR and that companies will be expected to establish and maintain a framework that takes data protection seriously.
Currently, individual rights on the use of data is primarily based around the Data Protection Directive whereby the EU legislative bodies set out the minimum requirements that nations had to transpose into their national legislation. The UK introduced the Data Protection Act (DPA) in 1998 and this is still the legislation that is in force today. Since there have only been minor updates since then, the European Commission and European Parliament decided that it no longer met the modern world’s privacy requirements.
To provide members with help in meeting their GDPR requirements, later this year the IGA will be sending out a ‘Garage Guide to GDPR’ at no cost to you. This detailed handbook will be tailored to the needs of independent garage businesses, and will offer sensible, practical information on areas including individuals’ rights, consent and data breaches. It will help you to quickly identify the issues that are of primary importance to your business, and determine how best to address those issues.
If you would like even further assistance, the IGA will also be offering on-site support and auditing for members. We’ll have more information on this coming soon.
In the meantime if you have any questions about GDPR, you can call the member helpline on 0845 305 4230.