Our view on GDPR...stop the panic | Microbyte

Our view on GDPR…stop the panic

GDPR is the word on everyone’s lips, and here at Microbyte we’re getting asked about it a lot. Many of you are worried about the hefty 4% fine for offending companies, but if you’re already taking data seriously, there’s no need to panic.

General Data Protection Regulation will come into effect next May, but most of the laws and concepts it outlines are already being put into practice. Some of the key new guidelines and regulations include:

  • More stringent regulations around responsible data outsourcing.
  • Reporting all data breaches – this is already practised within organisations such as the NHS, which have automated systems that know whether to report concerns.
  • Data Protection Officers – people in your business, who understands what you are doing with data, where it is flowing, how it is being used etc.
  • Data Protection Impact Assessments – a risk assessment around data, making sure everyone is considering the real impact of breaches.
  • Right to erasure – in our view, this is long overdue and this aims to guarantee when people wish to be removed from a database, they can be with no hassle.

Of the 17000 cases investigated by the ICO last year, just 16 ever resulted in fines, so before starting to panic, consider the broad spectrum of businesses these investigations must have been spread over! In the current climate however, it is right and important that companies demonstrate just how seriously they take data and make the most of the ICO to help on that journey.

Unfortunately, there’s no quick course or webinar that will make you compliant, because compliance itself is a moving target. What businesses need to do is prove they’re doing everything reasonably possible to take care of data, whether that’s moving data to the Cloud, internal audit processes, encryption etc.

Even though the guidelines might appear to take a new approach to data protection, in our view we actually need to start by going back to basics and asking ourselves key questions. Are we being sensible? Do we trust the measures we have in place? It’s a good time to look at fundamental security safeguards from passwords to data storage and transportation.

Many of you will be familiar with Microbyte’s NetAdmin process, also referred to as our Standardisation Checklist. We have already started implementing more checks around basic data protection, and these will of course evolve as we learn more over the coming months from the ICO.

There is always more that can be done, but let’s get back to basics and start taking data seriously before panicking about fines from a framework which was put in place to help us not hinder.

For more information about how we are planning to help move our clients forward feel free to contact us.

Contact Us

Similar blogs

Benefits of Outsourcing IT Support

Benefits of Outsourcing IT Support

Many businesses discover that developing and managing an in-house IT team is challenging. Issues such as scalability, effective delegation of IT tasks, and focusing on core activities prove problematic. At this point, managers begin to seriously consider the benefits of outsourcing to a third-party service provider. Using a managed IT services provider for support services,…

Read More

Avatar photo

What is IT Compliance

What is IT Compliance?

IT compliance is the regulatory framework for companies relating to their information technology. Specifically, compliance regulations ensure businesses follow best practices to safeguard customer data and improve information security. Regulatory requirements differ depending on country, industry, and other factors. Businesses in the UK must comply with UK, EU, US, and other laws, regulations, and standards….

Read More

Avatar photo

A Guide To MSP Compliance

A Guide To MSP Compliance

Compliance and governance elevate data security, effective controls, and regulatory observance for managed service providers (MSPs). Strike a balance between operational execution and overemphasising compliance; otherwise, you will create unwanted bottlenecks and stifle innovation. On the other hand, overlooking regulatory requirements leaves a firm open to security risks and substantial financial penalties. Companies should consider…

Read More

Avatar photo

What is Microsoft Azure and Its Benefits

What is Microsoft Azure and Its Benefits?

Microsoft responded to the emergence of cloud computing services by launching Microsoft Azure in 2010. Azure provides a cloud environment, on-premises, hybrid, and cloud situated, for app creation and management, virtualisation, data storage, web and mobile apps, and more. Services designed for the hybrid cloud let businesses use virtual machines at a distance, access databases,…

Read More

Avatar photo

Benefits of Sage X3

Benefits of Sage X3

Sage X3 (formerly Sage ERP X3) is an advanced, enterprise-level solution to manage business operations. The browser-based, cloud-ready tool helps manage finance, accounting, stock purchasing, inventory, supply chain, and manufacturing needs. Offered in a modular fashion, user subscriptions provide access to only the collection of capabilities required. Data is safeguarded when installed as an on-premises…

Read More

Avatar photo