GDPR – accountability and transparency
While the principles of accountability and transparency have previously been implicit requirements of data protection law, the GDPR’s emphasis elevates their significance. You are expected to put into place comprehensive but proportionate governance measures. Good practice tools such as privacy impact assessments and privacy by design are now legally required in certain circumstances.
The GDPR will introduce a duty on all organisations to report certain types of data breach to the relevant supervisory authority, and in some cases to the individuals affected.
Ultimately, these measures should minimise the risk of breaches and uphold the protection of personal data. Fines for a breach are currently capped at £500,000. When the GDPR comes into place, the ICO could levy penalties of up to €20 million or 4% of annual global turnover – whichever is higher.
It is important to take action now to ensure you are ready when GDPR is implemented. One step to take, is to ensure the quality and accuracy of the data that you hold. Send Marketing can help you to validate contact and address information. Simply send us your database (we can set up a connection to our secure ftp server, allowing you to transfer the file securely), and we’ll carry out a free of charge data audit and share the results with you.
The audit will show you the number of incorrect or incomplete addresses, individuals who are registered with the Mailing or Telephone Preference Services and individuals who can be identified as deceased or having moved away.
Based on the results of the free health check, you can make an informed decision on the action you need to take and you’ll have full sight of the costs involved. As you will have read – taking this action alone isn’t going to fulfil all of your legal obligations but, it’s certainly one step in the right direction.
To discuss anything covered in this summary, please call Louise, or Toby, at Send Marketing on 01922 741500.
As we said at the beginning – for more detailed information, we’d recommend visiting the website www.ico.org.uk – the home of the UK’s independent body set up to uphold information rights.