Branded Dotted Block Graphic - Dynamic Networks Group
Branded Three Diagonal Stripes Graphic - Dynamic Networks Group
Branded Plus Grid Graphic - Dynamic Networks Group

Preparing your business for GDPR

With changes to the EU General Data Protection Regulation (GDPR) set to come into effect in just over a year’s time, our IT team has produced guidance on getting your business ‘GDPR ready’.
Preparing your business for GDPR

It may feel like a long time until the deadline of 25 May 2018 hits, but you shouldn’t be tempted to leave it until the last minute to make sure your business is ready. In fact, we recommend you start acting now in order to have everything up and running in good time.

Why is the law changing?

It has been nearly 20 years since the UK’s data protection laws were last updated, in the form of the Data Protection Act 1998. That legislation was intended to bring UK law into line with the EU’s Data Protection Directive, which was introduced in 1995, and it’s fair to say that a lot has changed since then.

The aim of the new regulation is to strengthen citizens' fundamental rights in the digital age and facilitate business by simplifying rules for companies in the Digital Single Market. The general view is that a single law will also do away with the current fragmentation and costly administrative burdens, leading to savings for businesses.

With this in mind, GDPR is intended to bring the data protection laws for EU member states into the 21st century. GDPR emphasises transparency, security and accountability by data controllers, while at the same time standardising and strengthening the right of European citizens to data privacy.

What should you do to prepare?

Put simply, GDPR aims to return control of personal data to users, and simplify the regulatory environment. You can expect to hear a lot about how your business may need to adapt ahead of May 2018, but for now the advice being given by a number of independent bodies, including the Information Commissioner’s Office (ICO), is:

  1. Make sure that all decision makers and key people in your organisation are aware of the changes and understand the impact they will have.
  2. Consider organising an information audit to help you get to grips with exactly what personal data you hold and where.
  3. Review current privacy notices and put a plan in place for any changes deemed necessary.
  4. Ensure your procedures cover all the rights individuals have, including how personal data is deleted or provided electronically.
  5. Update procedures concerning subject access requests and plan how they are to be handled within the new timescales.
  6. Look at the various types of data processing your business carries out and identify the legal basis for it.
  7. Review how your business seeks, obtains and records consent and whether this will need to change.
  8. Think about putting systems in place to verify individuals’ ages and gather parental/guardian consent if required.
  9. Get the right procedures in place to detect, report and investigate personal data breaches.
  10. Familiarise yourself with available guidance on Privacy Impact Assessments, including when and how to implement them.
  11. Designate a Data Protection Officer to take responsibility for data protection compliance.
  12. For businesses that operate internationally, it is important that you to determine which data protection supervisory authority you will come under.

Above all, don’t worry! With over a year left until changes come into effect there is plenty of time to prepare, and if you have any further questions about GDPR or would like more information on the above please feel free to get in touch.

Dynamic insights & advice

Dynamic Networks completes a Management Buyout and commences its acquisition strategy.

"David Smith (CEO) and Gareth Leece (COO) have successfully completed an MBO of Dynamic Networks, working with Paul Landsman of Kingland Capital. The MBO provides for a simplification of the Board structure to allow for its continued accelerated growth strategy. The additional investment secured through Kingland Capital provides a significant fund for the Management Team to hire likeminded industry professionals in-line with its hiring plan and also acquire complimentary Cloud Managed Service Providers as they continue their objective to be one of the fastest growing MSP’s in the UK with a strong reputation for quality service. Further announcements to follow."