The European Commission has released a guide for small- and medium-sized enterprises to help them comply with the upcoming EU General Data Protection Regulation. The guide offers a definition of personal data, why the rules are coming into place, and the penalties companies can face for failing to comply with the GDPR. The European Commission also advises SMEs on what they must do to abide by the rules, including gathering consent, communicating with data subjects, implementing data protection by design, and advising companies on whether they need a data protection officer. Meanwhile, the U.K. Information Commissioner’s Office has released its own Guide to the GDPR to help companies prepare for the legislation. It includes 12 concrete steps organizations can take, along with a GDPR checklist.
If you want to comment on this post, you need to login.