Featured in JEP’s Expert Panel – 18th May 2018
A:
It is nearly the eve of “GDPR day”! You are either really excited by this new world of data protection afforded to you as data subject or maybe you are struggling to get to grips with what is required to be done as a business.
Quick tips for businesses:
- check your data protection registration requirements
- read infographics and guides on www.oicjersey.org
- check the “opt-in” criteria for your direct marketing email activities
- get new data processor agreements in place with your key outsourced service providers
- identify all your personal data processing activities,
- check lawfulness bases of each process
- update your policies and procedures
- know what a “data subject access request” is and response time
- know what a “personal data breach” is and response time
- know what “data subject rights” are
- know what principles of data protection are
- check latest cyber security software installed
- check computer back-ups are working
- check user access permissions on computer systems are appropriate, allowing staff access only to what is essential for their job
- train your staff
- keep records of all of the above