How a sports club considered everyone's data protection rights when dealing with a subject access request submitted by the father of a club member.
Many businesses send marketing emails to customers and prospects.
In my experience, most don’t know if what they are doing is legal.
This is risky. And GDPR doesn't help the situation.
GDPR is a growing concern for businesses. As we hear every day, there are potentially big fines for non-compliance.
But today, I want to talk about why data protection is important even if there were no fines or sanctions.
Put aside about your job and your business for a moment.
Think about this as an individual.
I wrote an article about 2 months ago giving some practical guidance on how to start complying with GDPR. Since I published the guidance, a number of people have said it really helped them get their head straight and get some clarity around the first logical steps that they needed to take. This week, I dig a little more into why step 2 (creating a central record of your processing activity) is so valuable.
I recently attended a 2-day conference on data protection in Brussels. While I will spare you the boring details, there are two key messages that could be of interest to real people who just want to be compliant.
If you are going to make mistakes with your GDPR compliance efforts, at least try to avoid the mistakes that others make.
Don't make the ODPC's job easy!
Not long ago, I don't think I knew what GDPR was. Now I have trained in data protection and I'm guiding clients about how to comply.
Maybe I'm a data protection imposter.
But maybe being a data protection imposter is OK.
The current fear-mongering about GDPR has a lot of similarities with what happened for the 'Millennium Bug' (Y2K).
But, don't be fooled. GDPR is real, it is coming, and you need to be ready.
GDPR is a pain in the ass
As an individual, I believe GDPR is a good thing. But as a business owner, I know it's a headache.
So, I'll just focus on specific steps you can take to start complying with GDPR.
Alongside my work helping businesses to prepare for GDPR, I continue to help businesses improve their cybersecurity.
I recently wrote an article for the Kildare Chamber of Commerce's quarterly magazine that provided focused actionable advice to individuals and businesses. You can download my tips here.