GDPR

Are you and your business ready for General Data Protection Regulations (GDPR)?

This is the new global standard for data privacy rights, security, and compliance. On 25th May 2018, the regulation comes into force and you need to be taking steps to get your business ready.

GDPR is designed to impose regulations on any organisation that process or hold personal data. Six key principles are included as part of that requirement:

  • Transparency, fairness, and lawfulness in the handling and use of personal data. You will need to be clear with individuals about how you are using personal data and will also need a “lawful basis” to process that data.
  • Limiting the processing of personal data to specified, explicit, and legitimate purposes. You will not be able to re-use or disclose personal data for purposes that are not “compatible” with the purpose for which the data was originally collected.
  • Minimising the collection and storage of personal data to that which is adequate and relevant for the intended purpose.
  • Ensuring the accuracy of personal data and enabling it to be erased or rectified. You will need to take steps to ensure that the personal data you hold is accurate and can be corrected if errors occur.
  • Limiting the storage of personal data. You will need to ensure that you retain personal data only for as long as necessary to achieve the purposes for which the data was collected.
  • Ensuring security, integrity, and confidentiality of personal data. Your organisation must take steps to keep personal data secure through technical and organisational security measures.

Currently, your data is probably spread across a wide array of IT environments – personal devices, on-premise servers, cloud services, even held within the Internet of Things. This means that most of your IT environment could be subject to the requirements of the GDPR.

“I have worked with Phil for over 10 years. I work in a business heavily dependent on IT, where making sure that people get paid on time can be very stressful. It is always reassuring to know that Astec are on hand to resolve any issues at critical times and they have never let me down. In fact, during recent takeovers by various software companies, and on my recommendation, the service supplied by Astec was retained as we were so remote from the head offices.
More recently I have used Phil’s skills when setting up my own business – he came up with solutions that ensured I could still offer the same service I had when we were part of a large organisation. I would not hesitate in recommending Phil and the whole team at Astec for their brilliant service.”

The Local Payroll Company

Broadly, your progress towards compliance can be broken down into four key steps:

  • Discover – identify what personal data you have and where it resides
  • Manage – govern how personal data is used and accessed
  • Protect – establish security controls to prevent, detect, and respond to vulnerabilities and data breaches
  • Report – execute on data requests, report data breaches, and keep required documentation

For each of the steps and the six key principles, we can help guide you through the process and provide you with the tools that can help you address the requirements of that step.

Given how much is involved, you should not wait until GDPR enforcement begins to start your preparation. Contact our Security and Data Protection team to discuss how we can help you on your way to compliance.

For more detailed information, download the Microsoft GDPR overview here.

FREE Easy Office 365 eBook

Quick tips to save you time for your growing business - the only guide you will ever need to all the amazing things you can do with Office 365.
Get Your FREE Copy

FREE Office 365 Migration Assessment

Take advantage and find out what it will take to start moving to the cloud…

Client Testimonials

Stay Up To Date

Receive email updates with useful cloud computing and IT advice for your modern business.

You can opt out at any time. Find out more in our privacy policy.

Get In Touch

Astec Computing (UK) Ltd
Astec House
Sedlescombe Road South
St. Leonards on Sea
East Sussex
TN38 0TA