GDPR 2020 – Are You Compliant?

Update your knowlege on data, protection, GDPR and PECR.

Data protection doesn’t stand still; every time the ICO (Information Commissioners Office) updates their guidance or takes action can change the way the legislation is interpreted.

The introduction the GDPR lead to most companies revisiting their data protection policies and procedures. Some extended this review to include their approach to the PECR (Privacy and Electronic Communications Regulations) too.

The most astute organisations and data protection managers identified that the most effective way to meet the demands of GDPR and PECR was to embed privacy as a core principle in every project, assignment, initiative, policy and procedure which lead to the introduction of Data Protection or Privacy Impact Assessments.

But data protection doesn’t stand still; every time the ICO (Information Commissioners Office) update their guidance, issue a penalty or enforcement notice has the potential to change the way the legislation is interpreted.

The large number of organisations that have been fined is a good indication of how easy it is to misinterpret the legislation and get things wrong. Some of these organisations may have inadvertently forgotten, or deliberately decided not, to adjust their policies, procedures and approaches; but either way the penalties have been steep and those caught only the very tip of the iceberg.

Cookies are a prime example, even the ICO had to admit that it had got it wrong and change the way they manage their web site cookie notification and opt-in procedures. Their guidance on cookies has been updated but even the quickest of quick checks on web sites shows that a huge number of organisations have not followed the latest guidance.

Data Protection doesn’t stand still. Its nearly 2 years since the GDPR was introduced. Most the fines, penalties and enforcement action taken can be attributed to human error, people not understanding laws, policies and procedures, people not following them or people just ignoring them.

This is a high risk high cost position to be in.

Concrew Training’s one-day #training #course on #DataProtection, The #GDPR and #PECR allows #management and #staff at all levels to be reminded of the latest legislation and good practice and have the importance of adhering to the organisations data protection and privacy policies reinforced.

This is a highly cost effective route for reducing risk in what is for all organisations a high risk high cost situation.

Concrew Training’s support can also be adapted to focus on PECR, Privacy Impact Assessments or a hands on review of existing policies and procedures.

CLICK BELOW TO SHARE

Share on LinkedIn Share on WhatsApp Share on Pinterest