Don't know where to start? We can help. Our Business Solutions team are trained in GDPR compliance so can consult with your management team on where you are at on your GDPR journey.Contact Us
The General Data Protection Regulation (GDPR) will come into force on the 25th of May 2018. It will replace the current Data Protection Act 1998 (DPA) as the main data protection framework. The Irish government has fully committed to implementing GDPR and released the Irish Data Protection Bill this February.
The act will introduce a widespread change to data privacy regulations in Ireland. Encouraging further transparency, security, and accountability by organisations who are data controllers and processors. The act will also strengthen data privacy for individuals given them rights to how their data is managed and used.
As a managed service provider, we at Typetec understand that our responsibility is twofold. We must become compliant to keep within the law but we must also, more importantly, become compliant so that our customers can fulfil their own compliance. With this in mind, we have developed experts resources and knowledge around the act itself that can be implemented into companies to develop a strategy around GDPR and data privacy.
The first step to address is discovery. This should start with the complying and identifying of all personal data in your organisation. You should also discover where you are in terms of compliance and assess how long it may take to become compliant.
The second step is manage. Start establishing policies such as a data governance program, an up to date privacy notice, proper consent forms and data processes.
Look to the future of the organisation and develop steps to protect all data. Part of this is putting data privacy at the heart of any major projects going ahead. Look at the technology, products, processes and organisational structures in place.
Final step going forward should be report. Keep track of new processed and data being captured. Develop a data protection impact assessment that can allow you to measure the risk associated with personal data processing.