In 2018 the new GDPR rules will be applicable by governing the handling of personal data, which are to be enforced in the next few months. The “General Data Protection Regulation” (GDPR) was introduced by the European Union and will take place regardless of the UK’s departure from the EU. As a Web Design Company handling a number of web design clients, we take these legislation’s seriously and to avoid any future problems, your company should too.
These strict new regulations will replace the existing ones with how companies collect and store personal data.
GDPR aims to give control back to people when it comes to their personal data, by creating a framework for data protection across EU member states. Tighter controls will be introduced over those who hold information. Many websites also collect data so GDPR will affect all our clients with website databases and web forms.
Does my company have to comply?
- These regulations are going to apply across the board, irrespective of company size or business sector – as web designers will have to conform and comply with these regulations!
- Penalties for non-compliance can be very severe.
- It is known that fines of up to 4% of a company’s annual turnover (or up to 20 million euros, depending on whichever is highest) can be ordered where violations are serious.It is unclear what is a ‘serious’ violation, but it is important to note that for a small business, such a fine could be cataclysmic.
- One of the most noteworthy changes which will be brought in by GDPR is that it places direct responsibilities on data processors for the first time. Data processors are essentially those businesses or people who process personal data on behalf of data controllers (those who determine how and why personal data is processed).
- Regarding GDPR and web design, the new regulations now make the people in charge of website planning or data input responsible too, rather than just the website owner or web hosting company, thus covering a much larger array of people.It’s a good idea to work with professional web design and SEO agencies who are always leading with new technology and can actively implement any new directives such as GDPR for clients. Perhaps it’s time to consider Visionary hub Space for your concerns.
What do the provisions include?
- People to access, correct, delete or transfer personal information held about them on any company system as a legal right.
- Citizens to provide explicit consent for their personal data to be held, after which companies must save this consent as a requirement.
- Organizations to inform the relevant data authorities and consumers, within 72 hours of breaches to data security as a legal obligation.
What steps do I need to take to comply?GDPR may seem overwhelming for many businesses, the reality is that it is coming and all businesses must start taking action to protect themselves and their customers.
It’s important that all employees who have previously, or will in the future, handle personal data, are made aware of these new regulations.
Provide all employees with GDPR training.
In order to comply with GDPR, companies which handle personal data must now fully understand exactly what kind of information they hold, where they hold it and who has access to that data. To establish this, a company-wide data audit is recommended and ideally, this will be carried out as soon as possible.
Visionary Hub Space cannot give legal advice on GDPR – we can help clients with suggestions regarding towards gearing up for their Web Design GDPR.
Contact us below for more information and we will reply as soon as possible.