Is your London IT department ready for GDPR?
HTL Support's Business Briefing event on 23 February was a resounding success and offered delegates real insight into the EU General Data Protection Regulation legislation and its likely effects on the IT sector. Demand for the event was far in excess of available places and is an indication of just how relevant the impact of GDPR is to anyone working in IT.
London business event on the General Data Protection Regulation from HTL Support
HTL recognised the February briefing was going to be successful within a week of promoting the event, as places were filled and we had to create a waiting list of enquiries. The briefing was attended by business delegates from a range of London-based industries and included keynote addresses from speakers within the field of IT governance and other industry professionals.
All delegates at our February briefing felt that the event had provided them with much-needed insight into GDPR and ways in which the legislation is likely to impact their business. The effects of GDPR will be widespread and companies should not just bury their heads in the sand in the hope that these issues will disappear. IT and systems will be most affected, so it's critical to get a handle on just what needs to be changed in the lead up to this legislation being enacted.
GDPR and Information Technology
It has been said that there simply isn't enough available information on the likely impacts of GDPR on IT departments. GDPR will replace current data protection legislation and comes into effect on 25 May 2018. GDPR will protect the personal privacy of EU individuals, as well as provide a framework which helps to limit damages caused by the loss or theft of data. Businesses illustrating non-compliance with the legislation will face hefty fines, so it's in your best interests to prepare sufficiently.
All organisations will need to make substantial changes to hardware and software in order to comply with GDPR, as well as implementing change to business systems and employee skills. The ways in which companies gather, store, protect and use personal data will all need to change, alongside methods for the disposal of personal data. Use of the term "personal data" is very broad, as it also applies to information held on staff, suppliers and, indeed, any EU citizen. Even something as basic as an email address is classified as personal data.
Some people may feel that Brexit will reduce or invalidate any need to comply with GDPR. This is not the case, it remains to be seen what, if any, alterations the UK Government will enact to GDPR legislation at the time of the official exit from the EU. Until such time, the provisions of GDPR will be in force, so it's in the interests of every UK business to prepare thoroughly for the new EU data protection laws.