DOES GDPR AFFECT MY BUSINESS?

In a word: “yes”. GDPR compliance will impact all companies.

WHY IS GDPR IMPORTANT?

It matters because not complying with the new law can end up in fines, and they’re not small. It’s important because we all deserve a level of choice about what personal information companies can keep about us and what they do with it.

GDPR is the first time the EU has rolled out European-style data protection law to the rest of the world. It affects every business on the planet that wants to trade with Europeans. And, excitingly, it’s very good news for marketers, a way to build lists of strong, warm prospects and identify the customers that matter most.

WHAT PARTS OF MY BUSINESS WILL IT AFFECT?

The word ‘individuals’ is key to it all. Whether you keep a list of individuals who work for you, people you want to buy from you, those who have already bought from you, suppliers, creditors, debtors, you name it, you are holding personal data.

Because we all use IT systems to power our businesses, GDPR compliance effectively applies to every business. Unless, of course, you don’t keep any paper or electronic files, don’t employ anyone, don’t operate online and have never sold a thing. That’s pretty unlikely. Safe to say, most aspects of your business are affected by GDPR.

IT SITS AT THE HEART OF GDPR

IT systems are the cornerstone of every business. They help us manage everything from hot prospect databases to lists of our best-performing customers, the welfare of people we employ to the suppliers and consultants we use the most.

Great IT is also critical to cross-department, business-wide GDPR compliance. If your systems consider GDPR at every relevant point, it’ll help you go on to achieve compliance.

HOW CAN WE MAKE OUR IT SYSTEMS COMPLIANT?

While we’re not GDPR experts, we know exactly how to make IT systems do smart things. It might mean a few tweaks; it might mean a full-scale system audit or a complete re-think. If you have the internal expertise, it might be wise to get someone external in to double check your IT systems are GDPR-friendly and see the wood for the trees. If you don’t have the in-house IT expertise, you’ll probably benefit from professional help.

EXCELLENT GDPR RESOURCES

Here are some detailed plain language posts about the GDPR:

GDPR AND YOUR BUSINESS – FAQ

Any company that works with information about EU citizens will have to comply.
The GDPR widens the definition of personal data, bringing new kinds in. It means that IT systems that weren’t affected before could be affected now.
Any data that can be used to identify an individual including genetic data, cultural, economic and social information
Hardly any, so it’s best to comply just in case.
The rules are much tighter. Opt-in includes B2B as well as B2C personal data, for example, a supplier’s work email address.
That’s down to you – it’s a marketing project. We help businesses like yours with the IT side of compliance.