Who protects your data? How will your organisation govern itself?
The General Data Protection Regulation (GDPR) became UK law on 25th May 2018. GDPR specifically highlights the requirement for transparency, accountability and for organisations to demonstrate they take data governance seriously.
Do you have someone, for example, who can:
- ensure staff are adequately trained, both to prevent data breaches or unauthorised disclosures and identify them when they happen?
- ensure compliance is seen as a priority in all aspects of an organisation’s activities?
- can competently handle individuals’ enhanced rights?
It is worth noting having a Data Protection Office in place is a mitigating factor if/when fines are issued.
How can you ensure you take data governance seriously?
The information provided and the opinions expressed in this document represent the views of the Data Protection Network. They do not constitute legal advice and cannot be construed as offering comprehensive guidance on the EU General Data Protection Regulation (GDPR) or other statutory measures referred to.