The General Data Protection Regulation (GDPR) replaces the Data Protection Directive 95/46/EC and was designed to harmonize data privacy laws across Europe, to protect and empower all EU citizens data privacy and to reshape the way organizations across the region approach data privacy.
Personal data is anything that can identify a ‘natural person’ and
can include information such as a name, a photo, an email address,
financial / medical / employment histories and online identifiers such
as IP addresses, cookie strings or mobile device IDs. The GDPR
impacts any company that collects, uses and maintains data sourced from their websites, apps, emails or any other means that results in data being retained
in an internal database; and brings greater responsibilities for businesses, irrespective of size, that hold data about EU citizens and visitors.
It is imperative that businesses fully understand the requirements of GDPR to avoid being hit with heavy fines and loosing customer and stakeholder confidence and reputation.
How to prepare?
Is my organization affected?
All organisations should be looking at the GDPR now if they are not fully compliant yet. There are many aspects to be considered and it takes considerable time to be achieved.
Cesca Accounting can help you to manage your GDPR, put in place procedures, educate your management and employees, minimize risks