As of 25 May 2018, businesses that hold personal data on EU citizens will be required to comply with the General Data Protection Regulations (GDPR). They affect the way all businesses – regardless of size or industry – communicate and keep data. With just six months to go, concern is growing that small businesses are not taking the action required to ensure their compliance.
What is GDPR?
The general data protection regulations are designed to protect personal data. They stipulate how companies can collect personal information, as well as how they can use and store it. They also make clear what companies cannot do with personal data, and how they will be prosecuted if they do not follow the rules.
As a consumer, they enable us to see what personal information companies hold on us, find out what they plan to do with it, and give us the power to ask them not to.