A guide to managing GDPR
Much has been said and written about the General Data Protection Regulation (GDPR) which comes into effect this year on 25 May. Rightly so, as it will have a big impact on the way many companies handle data and manage communications.
Transparency, security and accountability
The GDPR emphasises transparency, security and accountability. It has been designed to regulate personal data processing and to reflect the growth in digital technology.
All companies that process personal data of individuals in the European Union (the UK included, despite Brexit), will have to comply with the GDPR’s measures. They should begin by reviewing the personal data (anything that can be used to identify an individual) they process. From there, changes may need to be made to ways of working to ensure that compliant processes are in place by the time the regulation comes into effect.
To give individuals greater control over their personal data, the regulation gives them rights to:
• Access the data you hold on them
• have the information amended or rectified
• have their data deleted
• request that data not be processed by your company.
Protection by design
Organisations will also need to be able to demonstrate that they are adopting a ‘data protection by design’ philosophy. This means that when your business collects and processes data, the capability to protect that data must be built into its processes and systems.
Companies that process personal data of any sort need to be aware of how the regulation addresses them directly and the obligations it imposes. The real priority should be ensuring that robust processes are in place to both protect personal data and manage the new requiements that the regulation brings.
For more on GDPR and for practical tips on meeting its requirements, take a look at our Neopost Guide to Managing GDPR which can be downloaded at www.neopost.co.uk/gdprs. It has a particular focus on managing subject access requests and compliant communications.
Explosives in the mail
Last week, a mail-bombing campaign targeted several addresses across the UK. The packages, which were A4-sized white postal bags containing yellow Jiffy bags, were sent to transportation hubs in England and Scotland, and were designed to start fires upon opening. Thankfully, only one of the packages ignited...