Is GDPR just an IT problem?
The IT community is getting “a bad rap” for another Y2K-type problem looming with the GDPR. But is it purely a problem for your digital record-keeping? There can be no doubt that, with the huge changes in how digital profiles and footprints are handled and processed by business systems, consumers are quite rightly having ownership of their data handed back to them with the help of the GDPR. However, at the end of the day, data protection is not just an IT problem – it is a business problem and, despite dreams (or nightmares) of paperless offices, the reality is that nearly all businesses still rely on paper records to varying degrees (HR files, client data/contracts, medical files etc). It is therefore important that you take your “offline” processes into account when planning your compliance roadmap for GDPR, including but not limited to the following steps:
- Are you able to find all the client data held in paper records?
- Do you know how many copies and versions exist of each document?
- How do you keep your documents private?
- How are you handling document retention?
The essential GDPR rights of the individual apply to all record whether digital or hard copy:
- The right to access their own personal data
- The right to rectify inaccurate personal data
- The right to challenge automated decision making
- The right to object to direct marketing
- The right “to be forgotten”
- The right to data portability
Days remaining until GDPR D-Day
Online GDPR service
If you are interested in finding out more about how your business will be affected online and offline by GDPR and for more information about the online service, please enquire here. You will also receive a complimentary copy of the 88 page EU regulation 2016/679 document along with a list of definitions used in the document./p
GDPR enquiry form