A guide to managing GDPR

A guide to managing GDPR


Much has been said and written about the General Data Protection Regulation (GDPR) which comes into effect this year on 25 May.  Rightly so, as it will have a big impact on the way many companies handle data and manage communications.

Recognising this, we’ve put together a guide to help you ensure your business’ readiness. Over the course of this and upcoming blogs we’ll dive into the practical actions contained in the guide.

Transparency, security and accountability 

The GDPR emphasises transparency, security and accountability. It has been designed to regulate personal data processing and to reflect the growth in digital technology. 

All companies that process personal data of individuals in the European Union (the UK included, despite Brexit), will have to comply with the GDPR’s measures. They should begin by reviewing the personal data (anything that can be used to identify an individual) they process. From there, changes may need to be made to ways of working to ensure that compliant processes are in place by the time the regulation comes into effect.

To give individuals greater control over their personal data, the regulation gives them rights to: 

• Access the data you hold on them

• have the information amended or rectified

• have their data deleted

• request that data not be processed by your company.

Protection by design

Organisations will also need to be able to demonstrate that they are adopting a ‘data protection by design’ philosophy. This means that when your business collects and processes data, the capability to protect that data must be built into its processes and systems. 

Companies that process personal data of any sort need to be aware of how the regulation addresses them directly and the obligations it imposes. The real priority should be ensuring that robust processes are in place to both protect personal data and manage the new requiements that the regulation brings.

For more on GDPR and for practical tips on meeting its requirements, take a look at our Neopost Guide to Managing GDPR which can be downloaded at www.neopost.co.uk/gdprs. It has a particular focus on managing subject access requests and compliant communications. 


Add new comment