How do you know if your small business is compliant with the General Data Protection Regulation (GDPR)? Astrid offers a GDPR compliance checklist for small businesses to help you understand in a matter of minutes what parts of GDPR you have in place and where you need to take action...
Why GDPR compliance is important
The General Data Protection Regulation (GDPR) gives rights to individuals to control their own data and how it is used. The regulation puts the emphasis on organisations to prove that they are doing no harm by processing
personal data – this includes everything from an individual’s name, a business or personal email address, to an IP address. It requires organisations, however small, to be more accountable for their data processing activities by not only requiring them to comply but demonstrate how they are doing so.
Data protection regulation is overseen by the UK regulator, the Information Commissioner’s Office (ICO). The ICO requires businesses to pay a data protection, with few exemptions. Find out more about the
ICO and the data protection fee.
If someone complains about your business, you fail to respond appropriately with a subject access request or you experience a data breach, you may be subject to investigation, prosecution and fines by the ICO.