GDPR: You’ve done the easy bit so now what?
Now comes the hard part. Ensuring the internal workshops you’ve delivered have been listened to and people handling personal data within your organisation are embracing the data privacy culture is your next challenge.
So today is the day all GDPR project teams have been working towards.
The gap analysis was done months ago and your policies and procedures have been revised. Privacy Notices have been updated and communicated externally and depending on your approach you’ve emailed the “re-subscribe” messages to your contacts.
That was the easy bit. Now comes the hard part. Ensuring the internal workshops you’ve delivered have been listened to and people handling personal data within your organisation are embracing the data privacy culture is your next challenge.
The Data Protection Bill received Royal Assent on 23 May and will become the Data Protection Act 2018 and introduces a new duty on the ICO to prepared Codes of Practice to support and guide organisations as they navigate the GDPR pre Brexit and the Data Protection Act post Brexit. Waiting for the Codes to inform your internal awareness programmes isn’t an option. This needs to be done now.
We hope you’ve found our articles over the last few weeks useful. We’re here to support you with continued compliance and awareness training to your staff so do get in touch if you want to have a conversation.