With the new laws soon to come into effect, it is critical that you make sure that your business is
GDPR Compliant. This will aid in making sure that your business runs smoothly during the
transition period from one set of laws to the next, and guarantees that the information of your
customers is fully protected throughout. We’re going to be taking a look at some of the key
steps that you should take to ensure that you are fully compliant.
Data Protection – What You Must Do
Personal data must be kept and stored in a certain way to match the guidelines which have
been laid down by the new laws. All personal data must match up with six new principles for
your business to be GDPR compliant. Any data which you collect from customers has to be
done in a legal and lawful fashion. It must also be done for a legitimate reason, and can not be
demanded just for accessing the site. Furthermore, the information must be relevant to the site,
and not be anything more than what is required to complete a transaction or provide a service.
As well as this, personal data has to be kept in a safe place which has sufficient security, kept
up to date, and only stored for as long as it is needed.
Rules About Gaining Consent
Getting consent from customers is also something which is set to change. It’s no longer going to
be a case of simply getting consent; there are now processes which you have to keep to. Any
consent which you do collect has to be given explicitly and freely. It has to be specific to what
you’re asking people for, and they have to be informed about what giving their consent will
entail. Furthermore, you’ll find that consent, when given, has to be given explicitly. This means
that you can not take things like silence or inactivity to be consent anymore. This will prevent
people from taking consent without people giving it, and also ensure that you are in fact GDPR
compliant regardless of what happens. As well as this, if you are attempting to get consent from
someone who is under the age of 13, you will need to seek the permissions of a parental figure
to get it.
Overall, these are just a couple of the key steps which you need to take to become GDPR
compliant. We appreciate that the new laws make it harder for companies to store data, but this
is where having a good security system is crucial. Intaprotect offer you this service, with our
entire company mission being to find the holes within your system as it stands currently, finds
ways that you can ‘plug the holes’, and have a security system which protects customer data
without any issues at all. This will help to ensure that you are fully compliant with the new GDPR
laws and helps to guarantee that you go through the transition with no hiccups in the path to
For more information on all your cyber security needs contact Intaprotect – www.intaprotect.co.uk – We’re a Cyber Security Company based in Burnley, Liverpool Road – 01282 338693